crxhub-cli

SUSPICIOUS: the stated purpose is coherent, but the skill’s trust model is not. It asks the agent to execute an unverifiable bundled binary and use it with the user’s authenticated GitHub CLI context while fetching arbitrary third-party release assets. No overt exfiltration endpoint is shown, but the opaque binary and credential-adjacent access create high security risk.