pencil-mcp-get-style-guide

The skill is purpose-aligned and narrowly scoped, with no direct credential handling, file access, or suspicious data routing in the skill text. Risk comes mainly from reliance on Pencil MCP/Desktop components that appear closed-source and not independently verifiable, which makes this a low-malice but high trust-dependency skill.