performing-jwt-none-algorithm-attack

SUSPICIOUS: the skill is internally consistent, but its stated purpose is to perform an authentication-bypass attack and it gives an AI agent offensive security automation against external targets. Install trust is mostly normal; the primary risk is the exploit capability and autonomous network use, not malware or hidden exfiltration.