war-room

No explicit malware, backdoor, credential theft, or network exfiltration behavior is visible in this module. However, it constructs and encourages execution of external CLIs with a clearly permission-bypass style flag ('--dangerously-skip-permissions') and includes a fallback that may execute a binary from a user-writable directory (~/ .local/bin). This is a moderate-to-high operational security risk if the environment is tampered with or if the invoked tools have broad capabilities when run with reduced safeguards. Additional review is needed of the consuming subprocess execution code and the behavior of the invoked expert CLIs.

SUSPICIOUS. The core deliberation purpose is plausible, but the skill’s footprint is broader than necessary: default public posting, transitive skill trust, unresolved third-party delegation tools, and an explicit dangerous-permissions path. No confirmed malware or clear credential theft is shown, but the install trust and autonomous action profile make this a high-risk skill.