ads-generate

SUSPICIOUS. The skill’s core function is coherent, but it relies on third-party skill/MCP components and forwards Google AI credentials into external code outside a clearly official vendor distribution path. File access is mostly proportionate, yet the install-trust and credential-routing model make the overall skill medium-high risk.