project-skill-installer

SUSPICIOUS. The skill’s stated purpose mostly matches its behavior, and it does require user confirmation before installs. However, its main function is transitive installation of additional skills via remote `npx` commands, which meaningfully increases supply-chain and trust-chain risk even when using the documented skills.sh workflow. No clear credential theft or exfiltration is present, but the installation footprint is higher risk than a simple recommendation skill.