deobfuscating-javascript-malware

SUSPICIOUS: the skill is internally coherent for malware analysis, but it gives an AI agent high-risk offensive security capability to inspect and partially execute hostile JavaScript. Supply-chain concerns are limited and mostly documentation-level, but the combination of malware-analysis instructions plus execution of untrusted samples makes the overall skill high risk.