ssh-tunnel

[Skill Scanner] Credential file access detected All findings: [HIGH] data_exfiltration: Credential file access detected (DE002) [AITech 8.2.3] [HIGH] data_exfiltration: Credential file access detected (DE002) [AITech 8.2.3] [HIGH] data_exfiltration: Remote file transfer via SSH/SCP/SFTP/rsync detected (NW001) [AITech 8.2.3] [HIGH] data_exfiltration: Remote file transfer via SSH/SCP/SFTP/rsync detected (NW001) [AITech 8.2.3] [HIGH] data_exfiltration: Remote file transfer via SSH/SCP/SFTP/rsync detected (NW001) [AITech 8.2.3] [HIGH] data_exfiltration: Remote file transfer via SSH/SCP/SFTP/rsync detected (NW001) [AITech 8.2.3] [HIGH] data_exfiltration: Credential file access detected (DE002) [AITech 8.2.3] The skill/documentation describes a legitimate-sounding SSH tunnel manager whose capabilities (installing a CLI, managing a JSON config, creating tunnels, and running a menu-bar Electron app) align with its stated purpose. However, it requires a global npm install and configures a persistent macOS LaunchAgent which increases supply-chain and persistence risks. Because the tool will initiate SSH connections and likely access local SSH credentials, installing an unverified third-party package here carries meaningful risk if the package or its dependencies are malicious or later compromised. No explicit exfiltration or obfuscated malicious code is present in the provided fragment, but the installation+persistence pattern and access to credentials justify a medium security risk. LLM verification: This skill's description and capabilities are consistent with an SSH tunnel manager and there is no direct evidence of malware in the provided documentation. However the module uses a high-risk install-and-persist pattern (global npm install that sets up a macOS LaunchAgent and an Electron app), requires access to SSH credentials (~/.ssh) and can create arbitrary port forwards — all of which are sensitive and enable credential exposure or covert data exfiltration if the package or its distributi