li-upgrade

SUSPICIOUS: The skill’s purpose and local file access are mostly coherent, but it instructs the agent to execute a transitive skill update/install from a personal GitHub repo through npx, with no verifiable release or checksum trail. This is not clear malware, but the trust chain and proactive execution behavior make it a medium-risk skill.