anygen-doc

SUSPICIOUS. The core behavior fits a document-generation skill, and its package install path is ordinary, but it sends prompts and optional files to a third-party API, can autonomously message users in the background, and includes a recommendation to install another skill. Risk is moderate and mainly driven by external data transfer and autonomous messaging rather than clear malicious intent.