dots

SUSPICIOUS: the core capability matches a graph API skill, and there is no installer or obvious malware pattern. However, it stores API keys locally in plaintext, sends credentials to a custom domain with limited independent verification, allows credential-bearing requests to a user-overridden base URL, and treats remote content as authoritative instructions before performing mutations. These are meaningful but not clearly malicious risks.