using-superpowers

This document is not itself malware and contains no encoded or obfuscated payloads, but it materially increases supply-chain risk by mandating frequent, unconditional invocation of external skill modules without provenance checks or scope-limiting safeguards. The primary danger is behavioral: more frequent loading of third-party skills widens the attack surface and increases likelihood of sensitive-context exposure or privilege misuse. Recommend treating this policy as high-risk until trust controls, consent, and least-privilege safeguards are added.