claude-skill-app-onboarding-questionnaire

SUSPICIOUS rather than malicious. The skill’s core behavior broadly matches its stated purpose, but installation trust is weak because the publisher identity does not clearly match the GitHub source, distribution is direct-from-GitHub with little release provenance, and it instructs transitive skill loading into Claude Code. No explicit credential harvesting or exfiltration is described.