calcom-access

SUSPICIOUS: the skill's Cal.com purpose is plausible, but it routes sensitive access through a custom local marketplace CLI with unclear provenance and a build step that pulls dependencies before use. Credential scope is roughly aligned to task, yet the hidden-plugin trust chain and self-modifying behavior raise medium-high security risk even without direct evidence of malware.