subkeyword-injector

SUSPICIOUS: The core SEO-editing purpose is coherent, and the documented agent-browser dependency appears legitimate. The main risk is the required 'GSC MCP' dependency: no official Google-published MCP was identified, so the skill implicitly asks users to trust third-party MCP servers with Search Console data and possibly OAuth tokens. This is not confirmed malware, but the unresolved provenance and credential-routing risk make the skill medium risk overall.