li

SUSPICIOUS. The core file and wiki access largely matches the stated knowledge-management purpose, but the skill’s footprint is broader than necessary: it can modify many local files, auto-merge content, push to git remotes, and run an unpinned third-party Skills CLI. Data flows are mostly coherent and there is no clear credential theft, so this is not confirmed malware, but the install/publish chain and write authority make it a medium-high risk skill.