BlackPix

The skill is classified as suspicious due to potential prompt injection vulnerabilities in SKILL.md. Instructions like "Save your API key!" and "Send claimUrl to your human..." could be interpreted by a vulnerable AI agent to store sensitive information insecurely or exfiltrate data (the claimUrl) through unintended channels. While the explicit intent of these instructions appears functional for the skill's operation, they represent risky capabilities that could be exploited by a poorly secured agent, leading to information disclosure.