node-ops

The node-ops skill presents a coherent capability set for secure cluster node management but combines high-privilege hardware access (screen, camera, location) with remote command execution. This is potentially invasive and raises privacy and security concerns if not properly sandboxed, consented, and auditable. The documentation reasonably confines usage to a distributed-comms cluster, but lacks explicit safeguards (consent prompts, auditing, least-privilege scopes, secrets management, and strong input validation) that would be expected for such capabilities. Overall, the design is suspiciously powerful for general use and warrants strict governance, RBAC, and comprehensive logging before deployment in production. SecurityRisk assessed as moderate (0.55) with malware near-zero given no malicious payloads are evident, but the footprint warrants heightened scrutiny.