lark-calendar

SUSPICIOUS: the skill's calendar capabilities are coherent with its purpose, but its trust model is weak because core access is mediated by a non-official third-party CLI and hidden shared auth instructions. There is no direct evidence of malware or credential theft in the skill text, yet the dependency and credential-routing footprint is too sensitive to treat as benign.