skills-manager

SUSPICIOUS. The skill’s behavior is aligned with its stated purpose, and the `npx skills` CLI appears to be the official documented tool from the same org. However, its main function is to install and update other skills, including from arbitrary GitHub sources, creating a high transitive-trust risk. This is not confirmed malware, but it is a medium-to-high security risk because it automates loading additional agent instructions and code with broad downstream impact.