Qibook Company Profile

The skill's files, environment requirements, and runtime instructions align with its stated purpose (querying enterprise/person data via a QiBook API); there are minor operational notes but no signs of misdirection or unexpected privileges.

This skill appears to do what it says: it calls a QiBook API and formats results. Before installing: 1) Only set QIBOOK_BASE_URL to the official QiBook endpoint — if you point it to an unknown server you could leak queries and your access key. 2) Obtain QIBOOK_ACCESS_KEY from a trusted source (the SKILL.md points to https://skill.qibook.com). 3) Ensure your Python environment has the 'requests' package (the code imports requests but the skill provides no installer). 4) If you have security concerns, run the scripts in a sandbox or inspect the bundled files locally — they only perform HTTP GETs and local formatting. 5) Avoid supplying credentials unless you trust the BASE_URL operator.