fabro-workflow-factory

SUSPICIOUS. The skill’s broad capabilities mostly match its stated purpose as an agent workflow orchestrator, but the install path is a major concern: it relies on remote download-execute patterns and remote content piped into agents, and the provided material does not verify that fabro.sh and the referenced GitHub org are officially tied to the publisher. Credentials and external data flows are largely proportionate to the claimed tool, so this is not confirmed malware, but it carries high supply-chain and agent-execution risk until installer provenance is independently verified.