exploiting-oauth-misconfiguration

SUSPICIOUS/HIGH-RISK skill. Its stated purpose matches its capabilities, but the purpose itself is to equip an AI agent with offensive OAuth exploitation techniques, including credential capture and account-takeover paths. Data flows to attacker-controlled endpoints are intentional and disproportionate for a general agent skill.