things-setup

SUSPICIOUS. The stated purpose is a local Things 3 sync setup, and most local AppleScript/config actions fit that purpose, but the install path is not fully consistent with the privacy claims: it adds an unpinned third-party MCP package via `npx -y things3-mcp` without verified same-org provenance. That makes the skill’s actual trust footprint broader than advertised. No explicit credential theft or malicious endpoint is shown, so this is not confirmed malware, but it is a high supply-chain risk AI skill.