ai-dev-loop

SUSPICIOUS: the skill’s purpose is coherent, but it gives AI agents broad autonomous development authority and lets untrusted task/PRD content influence code-writing and command-capable workflows. There is no clear credential theft or exfiltration, yet the autonomy plus prompt-injection exposure makes this a medium-risk orchestration skill rather than benign documentation.