rules

SUSPICIOUS. The core purpose—copying local coding rules—is benign and mostly proportional, but the skill's optional install/execute paths are internally inconsistent with verified upstream tooling. The unscoped `ruler` command is a notable supply-chain risk because it appears to target the wrong npm package, and the Linear MCP recommendation also appears mismatched to official documentation. No direct credential theft or overt exfiltration is present, but the transitive installation and external tool execution make the skill higher risk than its stated local-copy purpose suggests.