skill-system-installer

SUSPICIOUS. The skill’s capabilities mostly match its installer purpose, and curated OpenAI/GitHub data flows are coherent, but it materially expands trust by installing arbitrary third-party skills from GitHub, including private repos, via mutable refs and without strong provenance verification. This is a high transitive supply-chain risk rather than confirmed malware.