workflows-work

SUSPICIOUS: the core purpose is legitimate developer workflow automation, but the footprint goes beyond local plan execution by invoking other skills, spawning subagents, uploading screenshots to third-party hosts, and autonomously pushing code and creating PRs. The main concern is transitive trust and external data flow, not confirmed malware.