paper2code-arxiv-implementation

SUSPICIOUS. The skill’s purpose and capabilities mostly align, and there is no evidence of credential theft or overtly malicious data routing. However, it is installed from a third-party personal GitHub repo through a transitive skill mechanism, and it processes untrusted external paper content while generating code/files, which creates meaningful supply-chain and indirect prompt-injection risk.