facebook-leads

SUSPICIOUS: the skill’s lead-generation purpose mostly matches its capabilities, but it relies on exposing a live Facebook session through third-party Reduck automation rather than official Facebook APIs. The optional write actions are clearly disclosed and gated, yet the combination of cookie-based auth, intermediary data flows, and transitive trust in another skill/service makes the overall security risk medium-high.