substack-tools

SUSPICIOUS: the skill's goals mostly match its capabilities, but it relies on an unofficial reverse-engineered library, asks for a raw Substack session cookie copied from the browser, and can perform irreversible public publishing actions. Data flow seems mainly to Substack rather than an obvious attacker endpoint, so this is not confirmed malware, but credential handling and supply-chain trust are materially risky.