keypo-signer

The skill's footprint is coherent with its stated purpose of hardware-bound key management and secure secret injection into subprocesses. Its use of Secure Enclave, vault-based secret storage, and environment-injection semantics align with a tightly controlled security model. While there are legitimate security considerations around how decrypted secrets are exposed to child processes and potential automation pitfalls, there is no evident malicious data flow or external credential harvesting pattern. Overall, the tool appears BENIGN with MEDIUM risk due to sensitive data handling in automated workflows and the potential for misconfiguration in unattended use; no unverifiable binaries or obvious exfiltration channels are evident.