workflow-management

SUSPICIOUS: The core local workflow-management behavior is benign, but the skill expands its footprint by referencing external agent/skill ecosystems—especially third-party or community-published commands not owned by the same publisher. That transitive trust and autonomy expansion are not fully documented, making the overall skill moderately risky despite no direct credential theft or exfiltration evidence.