architect-stack-selector

Overall, the skill appears benign and purpose-aligned: it acts as a high-level orchestrator for selecting and composing production-ready stacks with governance gates. There are no evident credential reads, unverified binaries, or exfiltration vectors in the provided description. The primary risks relate to supply-chain integrity of the selected base/add-on skills and ensuring that default governance gates are enforced without enabling silent or autonomous harmful actions. Given the explicit defaults and gated decision processes, the footprint is proportionate to its stated control-plane purpose. Maintain strict provenance verification for all skill installs and ensure per-action user approvals for any non-default, potentially impactful operations.