skill-creator

Mostly aligned with its stated purpose: creating and managing skills. The main concerns are transitive trust in other skills, external-content prompt injection exposure, and an unspecified upload endpoint for the skill library. This looks suspicious rather than malicious because the risky capabilities fit the workflow, but the trust and data-flow boundaries are not fully disclosed.