codex-auth-account-manager

SUSPICIOUS. The skill’s behavior mostly matches its stated purpose, but that purpose is highly sensitive: it asks users to install an unpinned third-party CLI from a personal npm scope and give it direct access to Codex auth files, tokens, and exportable backups. The network endpoints appear consistent with the feature set, so this is not confirmed malware, but the combination of credential management plus third-party executable trust makes the overall risk high.