executive-digest

SUSPICIOUS. The business purpose is plausible, but the actual footprint is high-risk: it reads local config/secrets, relies on an unofficial Google CLI plus other third-party brokers, forwards highly sensitive mailbox/calendar/meeting data, and performs autonomous external messaging and draft deletion. The capability set is broader than a simple digest and the dependency/data-flow trust model is not proportionate.