herobrine

SUSPICIOUS: the skill’s behavior matches its stated purpose, but that purpose is inherently high risk because it grants a scheduled Claude instance broad autonomous execution with `--dangerously-skip-permissions`, optional outbound messaging, and the ability to process untrusted external content. Install trust is mostly coherent and same-org, so the main concern is autonomy and data-flow scope rather than malware-like deception.