querying-census-data

This skill document describes a benign, focused capability: translating NL queries into Census API calls, primarily using an MCP toolset and falling back to direct Census API curl calls. I found no indicators of malware, obfuscated payloads, remote download-and-execute instructions, or third-party credential forwarding. The main security concerns are operational: (1) the instruction to echo the CENSUS_API_KEY — which can leak credentials in logs or agent transcripts and should be removed or changed to a non-printing check — and (2) the use of shell execution and filesystem reads which are appropriate here but expand the agent's attack surface if the runtime grants wider access than the plugin root. Overall this skill appears coherent with its stated purpose; mitigate risks by removing the explicit API key echo, restricting file reads to plugin data, and documenting logging/privacy handling.