clawflows

SUSPICIOUS. The stated purpose matches the core capabilities, and the npm install path is not inherently malicious. But this skill's main function is to pull in and run external automations that orchestrate other skills, creating substantial transitive trust and autonomy risk with only partially verified CLI provenance. No direct credential theft or exfiltration is shown, so this is not confirmed malware, but it is a medium-to-high risk orchestration skill.