link-scraper

This skill appears to be a straightforward web scraper/summarizer whose documented inputs and outputs align with its purpose. There are no direct indicators of malicious behavior, credential harvesting, or download-execute supply-chain patterns in the provided documentation. Primary risks are typical for scrapers: processing attacker-controlled content (prompt injection), potential unsafe rendering/execution when combined with browser-tools, and the general supply-chain risk of any npm dependency (cheerio). Recommend implementing sanitization, content size limits, and careful handling of scraped text before passing it to other skills or storing it in memory.