c3-ref

[Skill Scanner] Skill instructions include directives to hide actions from user BENIGN: The c3-ref workflow describes a governance/documentation tool for managing architectural references within a project. It operates on local documentation artifacts (.c3 directory) and ADRs, with no network activity or credential handling. While procedural rigidity could hinder automation if prerequisites are missing, there is no evident malware or supply-chain risk within this fragment. LLM verification: This SKILL.md is mostly benign in intent — it describes a documentation management workflow for C3 refs and performs only local repo reads and writes. However, the mandated 'WRITE FIRST' rule, the scripted flow that performs repository writes before discovery and potentially without per-action user confirmation, and the static scanner finding about 'hiding actions' are concerning. These patterns increase the risk of accidental or hidden repository modifications and make the skill SUSPICIOUS from