iblai-agent-api

SUSPICIOUS: mostly coherent with a UI integration skill, but it expands trust through CLI upgrades, MCP installation, mutable raw-GitHub downloads, and automatic command execution. I found no clear credential harvesting or malicious exfiltration, so this looks more like medium supply-chain/trust risk than malware.