gate-exchange-referral

SUSPICIOUS: the referral-help purpose is mostly aligned with the skill’s behavior, and no direct credential theft or exfiltration is visible. The main concern is transitive trust: this skill instructs the agent to install other skills/MCP tooling, creating medium supply-chain risk that is not strictly necessary for a largely informational workflow.