zeabur-template

SUSPICIOUS due to scope creep rather than clear malware: the skill claims to avoid deployment use, yet instructs the agent to deploy, publish, exec into services, restart services, and delete projects. Install/source trust is moderate because it uses npm `npx` for an apparently official CLI, but the unpinned `@latest` package and operational breadth raise meaningful risk.