beaconstac-automation

SUSPICIOUS: The skill is mostly coherent with its stated Beaconstac automation purpose and uses same-org Composio infrastructure, so it is not clearly malicious. Risk comes from routing authentication, schemas, and actions through Composio's hosted MCP gateway instead of direct Beaconstac APIs, plus the ability to perform remote account actions and bulk operations via a third-party broker.