eleventy-nunjucks

SUSPICIOUS: the content itself is a coherent Eleventy/Nunjucks documentation skill with no credential theft or exfiltration behavior, but its install path relies on transitive skill installation from an unverified third-party repo (`t4sh/skills4sh`) without pinning or release verification. This is primarily a supply-chain and trust-chain concern, not confirmed malicious behavior.