exa-install-auth

SUSPICIOUS. The stated purpose is narrow and the permissions are mostly proportionate, but the install instructions are internally inconsistent with Exa's current official docs. The main risk is supply-chain misdirection: the skill tells the agent to install package names that do not match the publisher's documented SDKs, then store an API key for use with them. There is no direct exfiltration or malware behavior shown, but the wrong-package + credential setup combination makes this unsafe to trust as-is.