documentation-scraper

SUSPICIOUS. The stated purpose is coherent with web fetching and local markdown generation, and npm-based installation is proportionate if slurp-ai is an official package. However, the skill broadly mandates running all commands outside the sandbox, writes files, executes a local helper script not shown here, and ingests untrusted external content that could carry indirect prompt-injection risk if later reused by an agent with write/exec powers. No clear credential harvesting or overt exfiltration is present, so this is not confirmed malware, but the trust and sandbox requirements make it higher risk than a normal documentation guide.