solo-pipeline

This skill is an orchestration wrapper that confirms with the user and then executes local launcher scripts and chained skills. The YAML/instruction file itself contains no direct network calls, hardcoded credentials, obfuscated code, or explicit exfiltration. The main risk comes from executing external scripts (solo-research.sh, solo-dev.sh) and automatically chaining multiple skills: those scripts and the invoked skills can perform arbitrary actions, including network access, installing software, or reading/writing credentials. Because the skill delegates execution to external scripts and allows Bash execution, there is a medium supply-chain risk if the scripts are untrusted or if CLAUDE_PLUGIN_ROOT is compromised. Overall: not overtly malicious in this fragment, but the pattern (execute local/unverified scripts + autonomous multi-skill chaining) warrants caution. Verify the contents and provenance of the launcher scripts and the chained skills before running, and avoid granting this pipeline access on sensitive systems or with elevated credentials.