skill-adapter

SUSPICIOUS: the stated purpose mostly matches local plugin analysis, but the actual footprint is broader than necessary. The main risk is not malware or exfiltration; it is indirect prompt injection and overbroad execution authority: the skill reads arbitrary plugin instructions/scripts, then adapts and applies them with unrestricted Bash access. No external install or credential flow was found, so this is not confirmed malicious, but it is a high-risk meta-skill that can propagate unsafe behaviors from untrusted repository content into real actions.