opencli

SUSPICIOUS: The skill's main capabilities broadly match its stated browser-to-CLI purpose, and the npm install path looks legitimate. However, the scope is high-risk because it reuses authenticated browser sessions, auto-discovers tokens, supports account-changing/public actions, and encourages exploration of arbitrary websites with write/exec-like agent capabilities. Not confirmed malware, but it is a high-risk agent skill.