cloudflare-dns

SUSPICIOUS. The skill’s DNS-management behavior matches its stated purpose, but it installs an unverifiable flarectl binary from a personal GitHub account rather than Cloudflare’s documented path, then forwards high-value Cloudflare credentials to that binary. This creates a severe supply-chain and credential-forwarding risk disproportionate to a routine DNS helper.