flow-next-opencode-work

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 0.90). This skill enforces running a repo‑bundled binary (.opencode/bin/flowctl), mandates blind git add -A and commit-amend to always include hidden folders (.flow/, scripts/ralph/), and automates review/fix loops (including remote subagents/backends) without human gates — patterns that strongly enable supply‑chain/backdoor insertion, remote code execution, and silent data exfiltration.