discord-harvest

SUSPICIOUS: the skill’s stated purpose matches its scraping and download behavior, but its footprint is still high-risk for an agent skill. Main concerns are transitive skill installation, processing untrusted Discord/browser content with write/exec capability, and bulk harvesting of private conversation artifacts. Controls like CDN allowlisting and filename sanitization help, but they do not remove the broader trust and prompt-injection risks.