discord-integration

SUSPICIOUS: The stated Discord purpose matches the capabilities, and network traffic goes to official Discord endpoints, which is a positive sign. However, the skill exposes exact secret file locations, instructs direct credential-file access, and routes those credentials through local unverifiable scripts/MCP code. That makes the footprint disproportionately risky for an agent skill even without evidence of confirmed exfiltration.