complete-implementation

SUSPICIOUS: the skill's core workflow is coherent for implementation verification, and there is no clear credential theft or malicious exfiltration. Risk comes from high-authority automation: automatic hook execution, transitive skill invocation, recursive task execution, and autonomous commit/push/backlog mutations. This looks like a powerful orchestration skill with medium-high operational risk rather than confirmed malware.