This skill claims strict credential isolation but the code embeds API headers/tokens (base64) inside HTML reports and uploads them to a remote archive endpoint — that can leak credentials if the uploaded snapshot is accessible. Before installing: 1) refuse to run in production until generate_html is changed to never include raw headers/tokens in client-visible artifacts; instead use server-side artifact generation or remove headers entirely. 2) Confirm the remote endpoints (o.yayuit.cn, e.asagroup.cn) are owned/trusted by your organization and acceptable for uploading sensitive reports. 3) Review and protect the .session_*.json files (they may contain tokens); ensure they are encrypted or stored in a secure path, and verify retention/cleanup behavior. 4) Resolve the README/LICENSE contradiction about public repo access and confirm licensing. 5) Consider a security review or require the vendor to provide a version that strips secrets from snapshots and documents exact data flows. If you cannot validate these, label the skill untrusted for sensitive data.