performing-container-security-scanning-with-trivy

SUSPICIOUS: The skill is internally consistent and uses official Aqua Security distribution paths, so it is not malware-like. However, it equips an AI agent with real security scanning capabilities against images, filesystems, and Kubernetes environments, which is high-risk tooling by category; combined with Docker/cluster access and optional curl|sh install hygiene, this warrants a high security-risk classification despite coherent purpose.