superdesign

The SuperDesign skill presents a coherent, legitimate design-assistant workflow that uses remote bootstrap prompts and a CLI to drive UI/UX design tasks. Primary security concerns are remote content integrity (INIT.md and SUPERDESIGN.md) and the authenticated CLI flow (login, token handling). Absence of hardcoded secrets or direct data exfiltration is noted, but supply-chain and credential risks warrant mitigations such as content signing/verification, restricted automatic updates, and secure credential storage. Treat as Benign-to-Suspicious with moderate risk; implement integrity checks for remote prompts and secure credential handling for the CLI.