vibekanban

The skill is purpose-aligned and uses a consistent official install path, so it does not look malicious. However, it is a high-risk orchestration skill because it grants autonomous coding agents broad shell and git authority by default, can expose copied secrets like `.env`, and accepts untrusted project/task content while retaining execution capability.