cli-anything-agent-native-software

SUSPICIOUS. The skill’s core purpose and capabilities are broadly aligned for a developer tooling guide, and the PyPI package has strong same-org provenance. However, the footprint is widened by explicit transitive skill installation through a separate `skills` CLI, mixed publisher/distribution signals, CDN-backed skill delivery, and unpinned install flows. This is better characterized as a medium/high trust-chain and supply-chain risk than confirmed malware.