self-improvement

SUSPICIOUS. The skill is coherent with its stated purpose and uses an official GitHub dependency, so this is not malware-like. However, it instructs autonomous persistence of content into project and user memory files, and it can ingest untrusted GitHub text before writing durable rules, creating meaningful prompt-injection and scope risks.