testing-apis

SUSPICIOUS: the skill is internally consistent as an API pentesting guide, but it gives an AI agent high-risk offensive security capabilities with active exploitation, fuzzing, and potential service-impacting actions. No clear credential theft or covert exfiltration is present, so this is not confirmed malware, but it is a high-risk security skill that should not run broadly or autonomously.