add-vercel

SUSPICIOUS: the stated purpose is legitimate and most CLI usage matches Vercel documentation, but the auth/data-flow model is not native to Vercel. Routing Vercel credentials and API requests through third-party OneCLI proxy injection is an integrity and credential-forwarding risk disproportionate to a simple deployment skill.

SUSPICIOUS. The core purpose is coherent: enabling Vercel deployment via the official CLI. The main risk is disproportionate credential handling and scope: a full-account long-lived Vercel token is stored in OneCLI, then assigned to every agent and injected through a third-party gateway. This is not clearly malicious, but it materially expands trust and blast radius beyond what a narrowly scoped deployment skill should need.