install-stack

SUSPICIOUS: The skill’s purpose and capabilities mostly align with software installation in a GPU container, and it does not appear to harvest credentials or exfiltrate data. However, it has moderate supply-chain risk because it installs and builds several remote repositories and submodules with mutable sources, dynamic mirrors, and no pinned commits, while operating with broad shell permissions.