dot-dash

SUSPICIOUS: the skill’s monitoring purpose partly matches its dashboard behavior, but it also adds high-risk prompt injection and broad transcript streaming across all sessions. No external malware or credential theft endpoint is shown, yet the combination of local shell execution, token exposure, LAN-accessible transcript UI, and direct prompt manipulation makes the skill high-risk and disproportionate for a simple dashboard helper.