vs-rfc-research

SUSPICIOUS: The skill's purpose and capabilities are mostly aligned, but it depends on a third-party MCP server and processes untrusted GitHub content with subagents while retaining file-write capability. This looks like a legitimate research workflow with medium supply-chain and prompt-injection risk, not credential theft or clear malware.