auto-dev

SUSPICIOUS: the skill is coherent with its claimed purpose, but that purpose is itself a high-risk autonomous coding pipeline that reads repo content, generates executable scripts/prompts, and runs iterative fix loops without human approval. There is no strong malware or exfiltration signal, and install trust is good because no remote downloads are used; the main concern is autonomous execution and prompt-injection exposure from untrusted project content.