aeo

SUSPICIOUS. The skill’s purpose and requested capabilities are mostly aligned, but it relies entirely on an unpinned third-party npm CLI invoked via npx @latest and forwards multiple API keys into that package. This looks more like a supply-chain and credential-handling risk than confirmed malicious behavior.