localref

SUSPICIOUS: the core purpose is coherent, but the skill fetches arbitrary external content and then uses it to inform changes, creating medium prompt-injection and supply-chain risk. No direct credential harvesting or overt exfiltration is present, but lack of pinning/integrity checks and generic curl downloads make it unsafe to treat fetched content as trusted.