Public APIs Skill Creator

The skill is classified as suspicious due to multiple critical shell injection vulnerabilities (RCE risks) and prompt injection risks. Specifically, `scripts/create_skill.sh` directly interpolates user-controlled input (like API URLs and descriptions) into generated shell scripts and markdown files without proper sanitization, allowing for arbitrary command execution and prompt injection in the newly created skill. Similarly, `scripts/gen_usage.sh` and `scripts/solve_task.sh` (especially with the `--try` flag) directly interpolate API URLs into `curl` commands, creating shell injection vulnerabilities that could lead to RCE if exploited by a malicious input or a compromised API source.