ohmg

SUSPICIOUS: the stated orchestration purpose is plausible, but the skill’s core behavior depends on executing an unverified external CLI and installing additional skills transitively. No explicit credential harvesting or attacker endpoint is shown, so this is not confirmed malware, but the install-trust and inherited-permissions risks are disproportionately high.