excalidraw-diagrams

[Skill Scanner] Download or install from free hosting/deployment platform detected This skill README is coherent with its stated purpose: instructing an agent how to create Excalidraw diagrams and produce .excalidraw files. I found no evidence of obfuscated code, hidden backdoors, or attempts to harvest credentials. The real risks are ordinary operational: writing files to arbitrary paths, executing local Python code via sys.path insertion in examples, and advising uploads to an external MCP/excalidraw.com endpoint which could expose potentially sensitive diagram content publicly. Recommend: validate any MCP URL before use, avoid importing helper code from untrusted local paths, and warn users (as the README does) before uploading sensitive diagrams. Overall, this is not malicious but carries typical safety/privacy considerations when writing or uploading diagrams. LLM verification: The skill fragment is coherently aligned with its stated purpose of guiding Excalidraw diagram creation and optional file export. It includes external dependency references (Excalidraw MCP) that are legitimate but introduce external trust considerations. No sensitive data handling, credential usage, or suspicious data flows are evident in the fragment itself. Given the static nature of the provided content, the risk is low but includes a dependency on an external MCP service which should be revi