token-guard

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.85). These are GitHub repositories from an unverified/unknown account that the skill explicitly tells users to clone and execute bash scripts from — running unreviewed remote shell scripts is a common, high-risk malware/credential-exfiltration vector.