mega-code-run

The skill’s behavior mostly matches its stated purpose: it runs a local MEGA-Code pipeline, polls for completion, and continues the review workflow. The main concerns are execution of code from an unspecified local plugin directory, opaque server-side processing/auth, and instruction-chaining from command output into further actions. This is better classified as suspicious/medium-risk operational tooling than clearly malicious.