add-thinker

SUSPICIOUS: the skill’s stated purpose is coherent, but it is a high-trust meta-skill that converts untrusted web research into persistent, globally installed agent instructions. The main risk is indirect prompt injection plus transitive skill installation, not credential theft or malware.