aif-skill-generator

SUSPICIOUS: the skill’s core purpose is coherent, and its use of official ecosystem CLIs is plausible, but it combines arbitrary web ingestion, file generation, shell execution, and explicit third-party skill installation. The main risk is transitive trust and prompt-injection exposure from external skills/URLs rather than clear malicious intent.