cliany-site

This skill appears internally consistent with its stated purpose, but review the following before installing: - LLM API key: the skill requires an LLM API key (primaryEnv lists CLIANY_ANTHROPIC_API_KEY). SKILL.md also supports CLIANY_OPENAI_API_KEY or legacy ANTHROPIC_API_KEY — confirm which provider you intend to use and supply only that key. Limit the key's scope where possible and rotate it if you stop using the skill. - Local artifacts: cliany-site stores sessions and generated adapters under ~/.cliany-site (sessions/, adapters/). These may contain authentication cookies or automated scripts; treat those directories as sensitive and inspect their contents. - cliany-site CLI dependency: the skill's runtime assumes you have the cliany-site Python package and Chrome with CDP access. Before letting an agent run this skill, run cliany-site doctor --json yourself to confirm environment and review what the tool will do. - Installer behavior: the included scripts/install.sh only copies SKILL.md into common skill directories (no network activity). Still review the upstream cliany-site project (pip package and GitHub repo) if you plan to install the underlying tool — the skill delegates real automation to that software. - Autonomous invocation: the skill can be invoked by the agent (default). If you are uncomfortable with an agent using your LLM key or interacting with sites autonomously, either do not install the skill or remove/limit the API key before enabling it. - Minor metadata mismatch: registry metadata requires only CLIANY_ANTHROPIC_API_KEY while SKILL.md documents multiple supported LLM keys; this appears to be a documentation/registry mismatch rather than malicious behavior, but you may want to confirm which env var your deployment requires. If you trust the upstream cliany-site project and are comfortable providing an LLM key and local Chrome/CDP access, the skill is coherent with its description. If not, inspect the cliany-site codebase and the contents of ~/.cliany-site before using it with sensitive accounts.