n8n

SUSPICIOUS: The skill is largely aligned with its stated n8n automation purpose and does not use suspicious installers or third-party credential gateways. However, it instructs the agent to read raw secrets from .env on load, forwards the API key to a fully user-configurable endpoint, requires an unconstrained credentials-template URL, and enables autonomous workflow activation/webhook execution with real-world effects. These are proportionate to advanced automation, but the trust boundaries are weak enough to warrant a suspicious classification rather than benign.