cli-anything

SUSPICIOUS due to scope inconsistency: the skill is documented as a passive reference with Read-only allowed tools, yet its intended use involves cloning repos, copying plugin files, installing packages, and operating on arbitrary external codebases. Install sources are same-org GitHub and marketplace-compatible, so this is not strongly malicious, but the transitive plugin install and untrusted-repo analysis make it medium risk.