halo

SUSPICIOUS: the stated purpose is plausible, but the execution model is not proportionate. A Halo management skill should call Halo’s official API directly or use an official Halo client; instead it mandates a third-party npm CLI and forwards HALO_PAT to it, creating high supply-chain and credential exposure risk.