superise-bootstrap

SUSPICIOUS: The skill is mostly aligned with its stated Docker bootstrap purpose, but it executes a mutable remote Docker image, handles a first-run password via logs, and mandates handoff to another skill for wallet actions. The data flow is local and the localhost-only binding is a meaningful safeguard, so this looks more like a risky-but-coherent infrastructure/bootstrap skill than outright malicious behavior.