gateway

SUSPICIOUS. The skill’s capabilities largely match its stated purpose as a local gateway-operations skill, and its multi-channel/network behavior is expected for that role. Main concerns are partial provenance for the `joelclaw` CLI, broad local/context access, and meaningful prompt-injection/autonomous-action exposure from an always-on daemon that processes external messages. No clear evidence of credential theft, deceptive routing, or overt malware.