skills-store

SUSPICIOUS. The skill is coherent with its stated purpose as a PostHog-backed skills store, and install trust is relatively benign, but it creates a high-trust remote instruction channel: fetched PostHog skill bodies are treated like system instructions and can influence later tool use. The local bridge pattern also creates a transitive trust path to additional remote skills. Main risk is remote prompt/instruction injection and delegated capability expansion, not malware or binary supply chain abuse.