st

SUSPICIOUS: the skill’s purpose and local file operations are coherent, but it relies on installing and executing a third-party personal `st` CLI via Homebrew tap or local GitHub build. There is no evidence of credential harvesting or exfiltration, yet the external-tool trust chain makes this a medium-risk skill rather than benign.