opencli

SUSPICIOUS: The skill is broadly consistent with its stated purpose of interacting with social/content sites via the user's browser session, but it grants wide authenticated access across many services, supports account-affecting actions, processes untrusted web content with browser/file-write capability, and relies on external CLI/extension tooling whose provenance is not established here. No explicit credential theft or exfiltration endpoint is shown, so this is not confirmed malware, but it is a high-impact, medium-high risk skill.