mcp-cli

SUSPICIOUS. The stated purpose is plausible, but the trust story is weak because the skill assumes an unspecified mcp-cli executable whose provenance does not cleanly map to official MCP tooling. Capabilities are broad but generally aligned with MCP; the main risks are unverifiable dependency provenance, downstream data exposure through configured servers, and a shell-executing example that could propagate unsafe input.