ads-agent

SUSPICIOUS: the skill's core purpose matches its capabilities, and local file access is proportionate for ad management. The main concern is data/control routing through a third-party Pipeboard MCP service rather than direct Meta APIs, plus financially impactful actions and reliance on additional skills. Not confirmed malicious, but medium risk and worthy of careful review before use with real ad accounts.