stitch

SUSPICIOUS: the skill's stated purpose is coherent, but its trust chain is not. It claims to use an official Google Stitch CLI while directing the agent to execute an unscoped npm package name that does not match the provided official SDK evidence, then feed it API keys/OAuth tokens and perform remote mutations. This is a supply-chain and credential-forwarding risk rather than confirmed malware.