overnight-repo-auditor

SUSPICIOUS: The core purpose is coherent and mostly read-only, but the skill is high-trust because it processes untrusted repository content at scale while retaining Bash, Write, and Agent capabilities and running autonomously without confirmation. No clear credential harvesting, exfiltration, or malicious endpoint routing is present, so this is not malware; the main risks are prompt-injection exposure and unattended execution scope.