candid-ship

SUSPICIOUS: the skill’s core behavior is mostly aligned with its purpose, but it grants an agent broad execution and repository-action power, including optional auto-merge and arbitrary post-merge commands. The main risk is autonomous code shipping and command execution, not clear credential theft or deceptive data routing.