find-leads

SUSPICIOUS. The skill is broadly aligned with lead generation, but it combines raw secret reading, arbitrary web content ingestion, and autonomous CRM writes. The CRM endpoint appears same-org and there is no external installer or unverifiable binary, so this is not malicious or high supply-chain risk; the main concerns are credential handling, indirect prompt injection from fetched websites, and autonomous business actions.