cli-bridge

SUSPICIOUS: the skill's purpose is coherent, but its actual trust model routes authentication through an only partially verified `sc-chatroom` gateway that stores and resolves underlying AKM secrets server-side. There is no obvious malware pattern or rogue installer, yet the credential forwarding and third-party mediation are high-impact enough to make this medium risk rather than benign.