mmk-notion-emoji

SUSPICIOUS: the stated purpose is narrow and plausible, but the skill relies on an unverifiable external `mmk` CLI with broad execution scope and hidden auth behavior in another skill. No explicit malicious or exfiltration behavior is shown in this excerpt, yet the missing provenance and delegated credential flow make the trust model incomplete and high-risk.