cold-start-check

SUSPICIOUS. The skill's overall behavior matches its stated purpose and there is no clear credential theft or exfiltration, but it has meaningful security risk from `eval` on repo-controlled YAML plus transitive skill installation and untrusted-content processing with Bash/Write access. This looks like a legitimate but unsafe auditing skill, not confirmed malware.