senpi-onboard

No direct malware behavior is evidenced in this fragment because it is descriptive onboarding/template content. The primary security concern is an indirect, supply-chain execution risk: externally retrieved MCP data (slugs) can influence which remote GitHub “skills” are installed via npx. If the MCP server or upstream data is tampered with, the system could install unintended code. Verify MCP authenticity, constrain slug→skill installation via allowlists/pinning/signature checks, and ensure wallet/credential file handling is permissioned and not exposed.