nby-jimeng-api

SUSPICIOUS. The skill’s purpose matches image/video generation, but its real trust boundary is an unofficial reverse-engineered Docker service from a personal namespace using an unpinned latest image. It reads local session credentials and forwards them to that black-box container, making the capability coherent but high-risk and disproportionate in install trust.