research-ideation

SUSPICIOUS. The skill’s core purpose is coherent and mostly benign, but it introduces medium risk through transitive skill invocation and reliance on an unofficial/community Zotero MCP layer that is not clearly tied to Zotero’s official distribution. No direct malware behavior, credential theft, or overt exfiltration is evident in the provided text.