project-os

SUSPICIOUS. The visible skill content is mostly a benign local project-governance scaffold with proportionate file writes and no direct credential or exfiltration behavior. The main risk is the third-party transitive installer path and the skill's explicit autonomous orchestration intent, which expand trust and could enable higher-impact actions in practice even though this snippet does not implement them directly.