iblai-notification

SUSPICIOUS: The skill’s purpose is coherent with building notification features, but its footprint relies on external CLI installation/generation, mutable raw GitHub downloads, and transitive trust in other ibl.ai skills/tools. Data flows are mostly proportionate and there is no clear credential exfiltration, so this looks more like medium supply-chain/trust risk than malware.