ambit-cli

SUSPICIOUS. The skill is broadly aligned with its stated infrastructure-management purpose and mainly targets official Fly.io and Tailscale workflows, but it carries meaningful security risk from npx download/execute, storage and use of high-privilege tokens, and especially deployment of third-party GitHub templates with mutable refs. I see no clear evidence of credential harvesting or malicious exfiltration, but the trust chain is wider than ideal and should be treated as high-impact automation.