add-mcp-tool

SUSPICIOUS: the skill’s stated purpose matches code edits for an MCP server, but it normalizes exposing arbitrary CLI execution as a new MCP tool without provenance or safety constraints. No clear malware or credential theft is present, yet the command-execution surface is broader than a narrowly scoped integration helper.