burpsuite-project-parser

SUSPICIOUS: The skill is internally coherent for Burp project analysis, but it materially expands trust to a community JAR from a personal GitHub repository outside PortSwigger’s official distribution path. There is no clear exfiltration behavior, and access is proportionate to the stated purpose, but the third-party extension and offensive security use case make the overall risk medium-high.