team-lifecycle-v4

SUSPICIOUS. The overall workflow is coherent for a team-orchestration skill, but its trust boundary is weakened by broad autonomous permissions and an ambiguous external `maestro delegate` dependency whose provenance does not cleanly match a verifiable official same-org tool. No clear credential theft or malicious exfiltration is shown, so this is not confirmed malware, but it is a high-risk skill to run without verifying the exact `maestro` binary and constraining permissions.