extend

SUSPICIOUS: the stated purpose matches marketplace delegation, but the skill expands trust to an unverified third-party CLI and external specialists, with mutable installation and outbound task sharing. The behavior is coherent with its purpose, yet install provenance is unclear and data leaves the local environment for paid third-party execution, so risk is medium-high rather than benign.