og-image-design

SUSPICIOUS. The core image-generation purpose aligns with the commands and remote services, and the Belt dependency appears to follow official same-brand distribution. The main concerns are transitive skill installation, reliance on an external CLI/service for authenticated operations, mutable raw GitHub install docs, and an example that fetches untrusted search content. This looks more like a legitimate but medium-risk ecosystem-dependent skill than outright malware.