creative-orchestrator

SUSPICIOUS. The skill’s stated creative-orchestration purpose is plausible, but its real footprint relies on an unverifiable bundled automation archive, forwards API credentials into custom local wrapper code, includes a hard-coded key, and encourages transitive skill invocation. The combination of unverified execution path, credential handling, and nontransparent data flow makes this high risk even though the underlying fal service appears legitimate.