marketplace-sdk-reference

SUSPICIOUS. The skill's overall purpose is a benign documentation/reference guide, and its network flow is limited to official Sitecore docs. However, the package names are internally inconsistent with Sitecore's official SDK distribution, creating a meaningful supply-chain/provenance concern. No malware-like behavior, credential harvesting, binary install, or exfiltration is present.