compliance-audit

SUSPICIOUS: The core capabilities are mostly consistent with a compliance-audit skill and there is no explicit exfiltration, credential forwarding, or malicious installer behavior. Risk is driven by unverified transitive skill dependencies plus Bash/Write-enabled automation, which expands the effective trust boundary without provenance.