test

SUSPICIOUS: The skill is mostly purpose-aligned for test analysis, but it combines local code execution with autonomous GitHub issue creation and possible npx package fetching. Data flows go to official GitHub endpoints, not an obvious exfiltration host, so this is better classified as a high-risk vulnerable skill than malware.