email-header-injection

SUSPICIOUS: the skill is internally consistent as an offensive email-attack playbook, but that purpose itself is high risk for an AI agent. No installer or credential-harvesting behavior is present, yet the content meaningfully enables phishing, spoofing, and email exfiltration against external targets.