skill-installer

SUSPICIOUS: the installer is internally consistent and uses official GitHub/OpenAI sources for curated content, but its main function is high-risk transitive skill installation. The largest concern is allowing arbitrary GitHub repos/private repos to place new skill instructions into the agent's trusted skill directory, not direct credential theft or off-platform exfiltration.