spec-kitty-agent

SUSPICIOUS. The skill’s capabilities mostly align with a spec-driven dev workflow, and the primary CLI install source appears legitimate. The main concern is transitive trust: it installs/depends on additional skills and propagates configuration into agent environments, increasing the blast radius beyond a simple workflow helper. No clear credential theft or exfiltration is present, but the install-and-sync footprint is broader than a narrowly scoped local planning skill.