Social Trend Report

The skill is suspicious due to a shell injection vulnerability in `scripts/collect.sh`. The `bird search "$kw"` command directly embeds user-controlled keywords from `config.json` without proper sanitization, allowing for arbitrary command execution. Additionally, the skill requires sensitive Twitter authentication cookies (`AUTH_TOKEN`, `CT0`) and is configured to perform external network requests and potentially announce reports to Discord, which are high-risk capabilities, though aligned with its stated purpose.