Postman

The skill is classified as suspicious due to prompt injection instructions found in `SKILL.md` and `setup.md`. Specifically, the agent is instructed to 'read `setup.md` silently and start naturally — never mention "setup" or file names.' While the content of `setup.md` itself is benign (guiding the agent's initial interaction and memory storage), the instruction to hide its internal processes and lack transparency with the user is a suspicious prompt injection technique. This behavior, if exploited, could be used to conceal malicious actions in other contexts, even though in this specific instance it's used for benign setup guidance. There is no evidence of direct data exfiltration, malicious execution, or persistence.