schema0-dev

SUSPICIOUS. The skill’s stated purpose matches deployment/version/secrets tasks, but it relies on an unverifiable external `schema0` binary that receives secrets, uses implicit authentication, and can upload full repository history or perform destructive remote actions. The main issue is not the feature set itself, but the lack of trustworthy provenance and transparent data-flow details for the required CLI.

SUSPICIOUS. The skill’s stated purpose is coherent, but its core secret workflow routes credentials through the unverified schema0 CLI. Because an unverifiable external CLI is asked to receive secrets, overall security risk is high even though there is no direct evidence of malware or explicit exfiltration endpoint in the text.

SUSPICIOUS. The stated purpose broadly matches app scaffolding and deployment, but the trust model is weak: it installs and relies on an unverified Schema0 CLI for authentication and deployment, uses an unpinned remote installer for Bun, and grants the agent broad autonomous authority to ship software and invoke additional skills. Main risk is supply-chain plus credential forwarding through unverifiable tooling, not confirmed malware.