research-archival

SUSPICIOUS. The core GitHub archival purpose is coherent, and GitHub token use goes to official GitHub endpoints, but the skill’s footprint is broader than necessary: it reads local secret-token files, routes scraped content through third-party/private services, and uses SSH to administer remote Firecrawl infrastructure. Those behaviors look operationally motivated rather than overtly malicious, yet they create medium security risk and data-exposure concerns.