social-creative-designer

SUSPICIOUS. The skill’s creative-design behavior is broadly aligned with its stated purpose, and the PyPI video-export dependency is normal. The main concern is trust and data-flow opacity around the Nano Banana MCP and ambiguous fallback API routing: the skill sends client photos and brand materials to an external service whose publisher and endpoint are not verified in the skill text. This is not confirmed malware, but it is a medium-high risk skill due to unverifiable external service provenance and remote handling of client assets.