qzcli

SUSPICIOUS: The skill’s actions fit its stated purpose, but it combines broad Bash(*) permissions with credential handling and installation from a personal GitHub repo. The main concern is install/execution trust and possible credential exposure or redirection via configurable API endpoints, not confirmed malicious behavior.