lesson

The skill’s stated purpose is coherent (capture and persist lessons to MEMORY.md). However, the installation approach introduces a high-severity supply-chain risk due to downloading and executing a remote script from raw GitHub content. This creates an uncontrollable code path that could alter behavior, access system resources, or exfiltrate data. While the local MEMORY.md writing aligns with the purpose, the install source undermines trust and warrants remediation (use an official registry, pinned version, and checksum verification). Overall, the capability is suspicious but not proven malicious; treat as SUSPICIOUS with strong security mitigations recommended before deployment.