gangtise-copilot

No overt malware logic is present in this installer wrapper; it mainly performs download, extraction, copying, and symlinking of skill bundles. However, it introduces significant supply-chain risk by installing remote ZIP content without cryptographic integrity/authenticity checks and extracting archives without script-enforced safety controls. Additionally, the --only value is not sanitized before being used in filesystem paths and symlink targets, which increases the risk of unintended filesystem targeting if an attacker can influence inputs. Treat as a security-sensitive installer and mitigate via artifact verification (e.g., signed bundles/checksums) and safer handling of user-controlled skill names and archive paths.

SUSPICIOUS: the skill's purpose broadly matches its capabilities, and its credential verification targets the claimed Gangtise API, but the overall footprint is high-risk because it performs unpinned remote downloads from object storage, installs 19 additional skills transitively, and distributes credentials/tokens across those installs. This looks more like a risky orchestration wrapper than confirmed malware.