qwencloud-model-selector

Mostly coherent as a Qwen model advisor, but the mandatory update-check workflow breaks the claimed advisory-only scope by executing local scripts and potentially installing another skill. Data flows appear limited and official, so this is better classified as suspicious overreach and transitive-trust risk rather than malware.