tool-inventory-init

SUSPICIOUS: the visible skill is mostly coherent for local inventory bootstrapping and does not show explicit credential theft or remote exfiltration, but it relies heavily on transitive internal skills/plugins that are not verifiable from the evidence. The main risk is opaque delegated behavior rather than the local bootstrap step itself.