executive-digest

SUSPICIOUS. The skill is largely purpose-aligned for an executive assistant digest, but it has a broad operational footprint and uses third-party CLIs as intermediaries for sensitive Google/Granola access. The main risks are credential breadth, opaque credential handling inside external tools, and autonomous actions like WhatsApp sends and draft deletion; these raise security risk without showing clear malicious intent.