aig-scanner

The skill is purpose-consistent and appears tied to a legitimate Tencent A.I.G project, not an obvious credential-stealing lure. However, it is still a high-risk security-scanning skill: it enables offensive-capable scans, targets private/local services, and forwards model tokens and agent configs to a configured AIG server. This is better classified as a legitimate but high-risk security tool rather than malware.