agent-manager

SUSPICIOUS. The core tmux-based lifecycle management purpose is coherent, but the skill materially increases risk by orchestrating autonomous Bash-capable agents, syncing cron jobs, and feeding them workspace-controlled prompt content. It is not confirmed malware and does not itself exfiltrate data or install payloads, but optional third-party launchers and approval-bypass examples make the overall footprint medium-to-high risk.