recipe-implement

SUSPICIOUS: The visible skill is broadly consistent with an implementation orchestrator, and there is no clear credential theft or exfiltration path in the supplied text. However, its real behavior depends on an external subagents-orchestration-guide skill installed through third-party npm/marketplace paths, creating material transitive-trust and autonomy risk with limited verifiable provenance in the provided evidence.