protocol-reverse-engineering

The skill is internally consistent and documentation-only, with no installer, credential harvesting, or explicit exfiltration path. However, its stated purpose is to equip an AI agent with protocol reverse-engineering techniques, which is a high-risk security capability despite the minimal footprint. Overall: suspicious/high-risk capability guidance, not confirmed malware.