nanobanana-mcp-image-generation

SUSPICIOUS: The skill’s purpose and capabilities are coherent for Gemini-based image generation, but trust is weakened because the skill publisher is not the same as the third-party MCP server it tells users to run, and it forwards Gemini/Vertex credentials to that external server. This is not confirmed malware, but it is a medium-high security risk due to third-party executable trust and mutable installation.