orchestrator

SUSPICIOUS. The skill's core orchestration behavior matches its stated purpose, and there is no clear malicious installer or credential-exfiltration path. However, it grants powerful autonomous background execution to child agents via tmux and --dangerously-skip-permissions, while feeding them repo/spec content that could contain prompt-injection instructions. This is a high operational security risk even without confirmed malware.