keyapi-pinterest-analysis

SUSPICIOUS: the skill's functionality broadly matches its stated Pinterest-analysis purpose, and its install path is relatively ordinary, but all requests and auth are routed through KeyAPI's own MCP endpoint instead of an official Pinterest API. That intermediary data flow and token dependency create medium security risk and trust concentration, though there is no clear evidence of malware or hidden payload execution.