security-review

SUSPICIOUS. The skill is internally consistent with its stated purpose, but that purpose is itself high risk: it equips an AI agent to conduct active penetration testing against live applications. Install trust is mostly benign, but the offensive-security scope, autonomous attack probes, and interaction with untrusted runtime content make this a high-risk skill.