github-vercel-setup

The skill's footprint is coherent with its stated purpose: it installs and uses official CLIs to set up a GitHub repository and link it to Vercel for auto-deploys, with user consent required for browser-based authentication. Data flows primarily consist of legitimate interactions with GitHub and Vercel, and credentials are handled by the respective CLIs (not by the skill itself). The risk is low to moderate and proportional to the task (credential handling via OAuth and CLI token storage). No unverifiable binaries or suspicious data exfiltration patterns are evident. Overall, the skill is BENIGN with manageable security risk (0.25) and low malware risk (0.05).