testing-security

Purpose and capabilities are aligned, but the skill is inherently high risk because it gives an AI agent offensive security testing capability against arbitrary applications and infrastructure. It does not show credential theft, covert behavior, or deceptive data routing, so it is not malware; however, it should be treated as a dangerous security-testing skill that needs strong user approval and scope controls.