jeo

SUSPICIOUS. The skill’s broad orchestration purpose mostly matches its behavior, but it achieves that by installing and trusting many external tools, plugins, hooks, and even another skill repo. There is no clear credential theft or malicious exfiltration in the shown instructions, so this is not confirmed malware, but the transitive installation model, persistent hook setup, and large third-party execution footprint make it a high supply-chain and autonomy risk.