content-creation

The skill documentation and capabilities themselves are consistent with a content-creation assistant and appear benign. However, the explicit installation instruction to download and pipe a shell script from a personal GitHub repo (curl ... | bash) introduces a supply-chain risk: that remote script can execute arbitrary commands, install additional software, or exfiltrate data. Because the fragment does not include the install.sh content, I cannot determine whether the remote script is malicious, but the distribution method is high-risk and disproportionate to the documented purpose. Recommend removing or replacing the piped-install pattern with a safer install process: provide a pinned commit URL, checksum/GPG verification, a reviewable script in the repository, or package distribution via an official package manager, and document exactly what changes the install performs.