auto-trigger

SUSPICIOUS: the skill is internally coherent as a workflow hook/config skill, but its real effect is to auto-invoke other skills transitively, including background/self-improving chains and auto session logging. No direct credential theft or exfiltration is visible, yet the orchestration model expands agent autonomy and trust beyond this skill's own narrow permissions.