opencode-openai-codex-auth

SUSPICIOUS. The skill’s general purpose matches authentication/configuration, but it relies on a ChatGPT web session token and private backend endpoint rather than a standard documented API flow, while also using direct npx execution from an unpinned package. No clear third-party credential exfiltration is shown, but the install trust and auth model are shaky enough to treat this as medium risk.