tempo

SUSPICIOUS: the skill's core behavior is mostly aligned with its stated purpose, and the installer appears same-org and officially documented, so this is not confirmed malicious. However, it combines mutable `curl|bash` installation, credential/payment mediation through an external CLI, paid API execution, optional card-provider keys, and remote file downloads, making the overall footprint medium risk and broader than a simple HTTP helper.

The code fragment itself does not perform file IO, network requests, or data processing directly, but it includes a suspicious AI invocation that attempts to coerce an external AI service into producing a tightly controlled output. This represents a potential supply-chain and data-leak risk if secrets are ever included in inputs or configurations are executed in user environments. The dominant concern is the AI prompt injection-like pattern and reliance on a third-party service in a package configuration, which could enable information leakage or unintended behavior in CI/CD pipelines.