use-mcp

SUSPICIOUS: the skill's purpose is plausible, but it unnecessarily routes MCP operations through Gemini CLI, forwards local context externally, enables auto-approved tool execution, and expands trust to other skills/subagents. The external CLI appears official rather than malicious, so this is a medium-risk delegation and data-flow concern, not confirmed malware.