Goose Extensible AI Coding Agent by Block

SUSPICIOUS: The skill is largely coherent with its stated purpose as a coding agent guide, and the referenced Goose project appears to be an official Block offering with a verifiable release trail. The main risks are proportional but substantial: transitive skill installation, broad autonomous command/file capabilities, and prompt-injection exposure through web/MCP inputs. Not malware, but a medium-high risk agent-enablement skill.