ESLint Custom Rule Builder

SUSPICIOUS: the stated ESLint rule-building purpose is plausible, but the main risk is the install path. This skill asks the agent to perform transitive installation from an unverified third-party skills repo via unpinned `npx`, and the publisher does not match the cited upstream ESLint project. No direct credential theft or exfiltration is shown, but install trust is insufficient.