This is a legitimate Meegle API skill pack, but it gives an agent broad authority to read and change project data and stores long-lived credentials without enough safety guidance.
Install only if you want an agent to operate Meegle on your behalf. Use a least-privilege Meegle plugin, restrict the configured project/user scope where possible, protect ~/.openclaw/openclaw.json with local file permissions, and rotate the plugin secret if that file is exposed. Before destructive or broad actions, require the agent to show the target project, object IDs/names, and intended changes, then confirm explicitly.