viral

SUSPICIOUS. The core behavior matches a content ideation skill, but it asks the user to install a third-party MCP server via npx and provide an Apify token to that external process. The main risk is supply-chain and credential-forwarding exposure, plus prompt-injection risk from broad untrusted research sources; there is no strong evidence of overt malware or intentional exfiltration.