sprites

SUSPICIOUS. The core purpose and official API endpoints are coherent for a Sprites management skill, but the embedded 'real' API key and detailed production environment metadata make the skill unsafe and over-scoped. The main issue is credential exposure and sensitive infrastructure disclosure, not malicious third-party routing.