nano-banana

SUSPICIOUS: The skill’s purpose and core capability align with image generation, and the Gemini CLI extension mechanism appears officially supported. Risk comes from mandatory installation of third-party extension code from a separate GitHub org and the blanket requirement to run with --yolo, which grants unnecessary autonomous approval. No clear exfiltration or overtly malicious behavior is evident, but install trust and autonomy are broader than ideal.