agent-orchestrator

SUSPICIOUS. The skill is mostly coherent as an orchestration guide and shows no direct credential theft or explicit malicious exfiltration, but it meaningfully expands agent capability through delegated sub-agents and optional skill chaining. Its main risks are transitive trust, indirect prompt injection from repo/web content, and moderate autonomous execution of code/test workflows; direct malware evidence is low.