excalidraw

SUSPICIOUS: the skill’s behavior is mostly aligned with diagramming, but it depends on executing an unreviewed third-party MCP server cloned from a personal GitHub repo with npm build scripts and no strong release verification. Data flows are otherwise proportionate and mostly local; the main concern is install and execution trust rather than overt malicious behavior.