codex2api-reverse-proxy

SUSPICIOUS. The skill is internally coherent as documentation for a credential-heavy reverse proxy, but it concentrates refresh/access tokens and API traffic in a local gateway and installs from a personal GitHub account unrelated to the stated skill publisher. The main concern is supply-chain trust plus disproportionate secret concentration, not confirmed malware.