maestro-execute

SUSPICIOUS: The skill is purpose-aligned as a local execution orchestrator, and there is no clear credential theft or external exfiltration path. However, it gives an agent broad Bash/write authority, can run task-supplied commands, propagates untrusted task/discovery content into spawned agents, and supports largely autonomous multi-wave execution with optional auto-commit. This makes it high-impact and risky even without signs of confirmed malware.