skill-finder

The Skill Finder skill implements expected functionality (searching skills and installing them from GitHub) and uses common sources (GitHub, skills.sh). There is no direct evidence of embedded malicious code or obfuscation in the provided description. However, the install flow downloads arbitrary repository content and immediately registers it for agent use without described validation, pinning, or sandboxing. That capability is a supply-chain risk: a malicious or compromised skill repository can introduce code that the agent will later execute, possibly leading to credential exposure or unauthorized actions. Recommend adding safeguards: require commit SHAs or signed artifacts, present a clear file-level preview to the user and require explicit confirmation before registration, run automated static checks/sandboxing on downloaded skills, and avoid automatic enabling of new skills without user review.