sdd-update

SUSPICIOUS: The skill’s purpose mostly matches its capabilities for clerical spec maintenance, but it depends on an opaque `sdd` CLI and can execute verification commands from spec metadata, plus perform repo-changing git actions. The footprint is not overtly malicious and shows no clear credential harvesting or exfiltration, but the unverifiable CLI dependency and command execution authority make it medium risk.