basic-app-studio

SUSPICIOUS. The documented operations match App Studio automation, but the skill’s core dependency is an unverified `community-domo-cli` that is not supported by the official evidence for Domo tooling. Because this community CLI is granted automatic access to the user’s saved Domo session and can perform broad write operations, the install/execution trust and credential-forwarding risks are high even without explicit malicious behavior in the text.