Meta Business Suite

This skill appears to be a straightforward Graph API cookbook, but review these points before installing: - Sensitive file access: SKILL.md contains Python one-liners that read ~/.meta_tokens_cache.json to extract tokens and IG IDs. That file is sensitive and the skill metadata does not declare it. If you do not maintain such a file, the commands may fail; if you do, be aware the skill explicitly reads it. Consider removing or relocating that file or avoid using the 'Option B' cache approach. - Environment variables: The skill declares META_PAGE_ACCESS_TOKEN and META_PAGE_ID (appropriate). It references IG_ID in examples but does not declare it; either set IG_ID yourself or confirm how it will be derived. Prefer setting tokens via environment variables rather than caches. - Token scope: The token can create, edit, and delete posts and manage comments. Use a token with the minimum permissions required, and rotate/revoke tokens you pass to any third-party skills. - Operational safety: Commands include destructive actions (DELETE for posts). Confirm the agent only performs actions you explicitly request; do not give long-lived or highly privileged tokens to untrusted agents. - If you want stronger assurance: ask the skill author to (1) declare the ~/.meta_tokens_cache.json path in metadata if it's intended, (2) document IG_ID as an explicit env var option, and (3) provide explicit guidance about required token scopes and safety checks before destructive operations. Given the mismatch between documented requirements and the instructions' optional file access, proceed only after addressing the above or using isolated/limited credentials.