ecosystem-authoritative-sources

SUSPICIOUS. The skill is mostly a benign documentation/reference guide, and the `npx skills` CLI appears to be an official, open-source tool with matching docs. However, it teaches transitive installation of arbitrary third-party skills from GitHub and includes executable shell commands plus a destructive local reset example, which is broader than a pure read-only reference skill and creates medium supply-chain risk.