ensemble-team

SUSPICIOUS: The skill's core purpose and file-creation behavior are mostly coherent and there is no clear credential theft, malicious exfiltration, or suspicious installer path. However, it combines untrusted WebSearch-derived content with persistent agent-profile generation and recommends broad Bash(*) permissions, which meaningfully increases prompt-injection and autonomy risk for a skill whose main job is scaffolding team configuration.