doc-readme

The doc-readme skill appears to fulfill a well-scoped, developer-oriented purpose: generating, updating, and validating README files based on local project metadata. Its footprint—relying on local project files and internal scripts to populate or refresh <auto> sections—aligns with the stated objective and poses minimal security risk. There are no credentials, external binaries, or data exfiltration pathways evident in the described workflow. Overall, the skill is BENIGN with LOW security risk and no malware indicators.