recipe-to-cart

SUSPICIOUS: The skill's cart-writing behavior matches its stated purpose, and no clear credential theft or exfiltration is shown. The main concern is install/execution trust: it depends on a third-party CLI from npm without clear proof that the package is official or controlled by the same publisher, while also enabling real-world shopping actions the agent cannot verify afterward.