10x-cli-setup

SUSPICIOUS: the stated purpose is coherent, but the skill delegates execution-critical behavior to a live, unpinned README fetched at runtime. That creates medium supply-chain risk because future upstream README changes could alter what the agent installs or runs, even though the source is same-org GitHub and there is no direct credential harvesting or overt exfiltration in the skill itself.