cafe3310-skill-installer

SUSPICIOUS: the skill's purpose matches its behavior, but it is a transitive installer that clones and executes mutable shell code from a personal GitHub repo without pinning or release verification, then installs additional skills into the agent environment. No clear credential theft or exfiltration is present, so this is not malicious, but the trust and transitive-install footprint make it medium/high risk.