dev-orchestrator

SUSPICIOUS. The skill’s core purpose is coherent, and there is no clear credential theft, exfiltration, or third-party installer. However, it imposes unusually forceful workflow control: broad auto-activation, mandatory immediate Bash execution, detached long-running tmux sessions, and hook-based compliance pressure. That makes it higher risk than a normal documentation or routing skill, especially for investigation tasks where untrusted input may trigger execution before review.