aif

SUSPICIOUS: the stated purpose mostly matches project setup, but the actual footprint includes high-risk transitive skill installation from an external ecosystem, unpinned `npx` execution, and a CLI/documentation mismatch that weakens install trust. The built-in scanner is a mitigating control, not a full defense, so overall this is a high security-risk setup skill rather than confirmed malware.