cdt

SUSPICIOUS: the skill’s capabilities broadly align with its stated purpose as a multi-agent dev workflow, and the named external services mostly appear official. The main concerns are broad autonomous execution scope, untrusted web/document ingestion combined with write/exec powers, and some opaque dependency/config details (`.mcp.json`, optional third-party tools, possible extra skill/command chaining). No clear credential harvesting or incompatible data exfiltration is evident from the provided text.