tdd-claude-acpx

Suspicious. The workflow is broadly aligned with its stated TDD-plus-review purpose, but it relies on an unspecified external `acpx` tool/service and intentionally sends local code, tests, and diffs outside the repo. Without verifiable provenance and endpoint details for `acpx`, the skill carries meaningful supply-chain and data-exposure risk even though it does not show direct credential theft behavior.