implementing-cloud-vulnerability-posture-management

SUSPICIOUS: the skill is broadly aligned with CSPM and uses mostly official data flows, so it does not show clear credential theft or malware behavior. However, it gives an AI agent active cloud security scanning capability and some configuration-changing commands, plus unpinned third-party scanner installs, making it a high-security-risk defensive security skill rather than a benign low-risk helper.