The 1password blog links to a better Cyberinsider.com article that I think covers the issue better. One suggestion from that article is to check the skill before using (this felt like a plug for Koi security). I suppose you could have a claude.md to always do this but I personally would be manually checking any skill if I was still using Moltbot.