autosave

This file is a networked, token-authenticated CLI client that can create/update tasks and trigger server-side execution through remote API endpoints. It contains no obvious client-side malware behaviors (no exec/eval, no child_process, no filesystem/persistence). However, it poses moderate security/privacy risk: the AUTO_SAVE_TOKEN is placed in URL query parameters (more leak-prone than header-based auth) and the code logs every parsed SSE event payload to stdout without redaction, which could expose sensitive data depending on server responses. Server-side behavior and token scope dominate the real-world impact; this module itself is more likely to be an automation client than intentional malware.