design-spec

SUSPICIOUS. The visible skill is mostly aligned with UI design-spec generation and shows no explicit credential theft or malicious exfiltration, but it is over-permissioned with Bash and relies on opaque internal sub-skills/workflows plus untrusted visual/external content routing. Main risks are transitive trust and indirect prompt injection rather than confirmed malware.