context-diff

SUSPICIOUS: the stated purpose is coherent with using a CodeContext CLI, but the skill relies on an unpinned `npx` runtime install and the evidence shows inconsistent official package naming (`codecontext` vs `@codecontext/cli`). There is no clear credential harvesting or malicious data routing, so this is not confirmed malware, but it carries medium supply-chain risk due to unverifiable runtime package selection and Bash execution of an external tool.