kagi-session2api-mcp-server

SUSPICIOUS. The skill is coherent as a Kagi search/summarization integration, and its install path is relatively normal, but its central mechanism is using full-account Kagi session tokens to bypass the official paid API. That makes credential scope disproportionate, data flow riskier than a normal API client, and the overall skill higher risk than a standard MCP integration.