competitor-teardown

The skill's stated purpose (structured competitive analysis) is conceptually coherent with its described deliverables. However, the installation and execution pattern—downloading and executing an unverifiable external binary via curl | sh from a non-official source—creates a significant security risk and is misaligned with a safe, developer-friendly workflow. This supply-chain risk, combined with the lack of verifiable provenance for the external CLI, makes the overall footprint suspicious. The rest of the workflow (web research, screenshots, and analysis outputs) is normal for a competitive-analysis tooling setup, but the install-source and data flow through an unknown binary warrants downgrade to SUSPICIOUS with strong security cautions.