marketing-pipeline-ai-content

SUSPICIOUS: the core capabilities mostly match the stated marketing-content purpose, and the documented credential use is proportionate, but install trust is weakened by directing users to an unrelated third-party GitHub repository without a verifiable publisher relationship. No confirmed malware or explicit credential theft is shown, but the combination of external code install, API-key usage, and untrusted research ingestion creates meaningful security risk.