cli-anything-firefly-iii

The skill's stated purpose and requested credential type are coherent with a Firefly III CLI, and data appears intended to flow directly to the user's own Firefly III instance rather than a proxy. The main issue is install trust: the package name could not be verified on PyPI and the publisher relationship is unclear, so the distribution path is not well substantiated. Broad finance/admin operations and webhook management increase impact if the package is not what it claims. Overall this is better classified as suspicious due to unverifiable package provenance, not confirmed malicious behavior.