skill-creator

The presence of patterns that describe downloading and running external agents/tools (install/convert skills for the ecosystem) constitutes a potential remote-execution vector if the runtime ever executes these steps unsafely or with untrusted inputs. This aligns with a known risk surface where a skill could cause external binaries to be installed or run.