claude-gif-create

BENIGN in purpose and data flow, but with notable supply-chain risk. The capability matches programmatic GIF creation and there is no sign of credential harvesting or exfiltration; however, the skill executes unpinned npm installs and relies on an unverifiable local Python binary/helper scripts, so overall risk is medium-high despite low malware evidence.