wren-http-api

SUSPICIOUS: the core HTTP JSON-RPC behavior is consistent with the stated purpose and targets a local Wren server, but the skill adds moderate trust risk through a silent remote version check, transitive skill-install guidance via a third-party CLI, and an unpinned `latest` container image. No clear credential harvesting or off-target exfiltration is present.