project-session-manager

[Skill Scanner] Natural language instruction to download and install from URL detected This skill specification is coherent and consistent with its stated purpose: managing git worktrees and tmux sessions. I find no evidence of malicious code, credential harvesting, or untrusted download-and-execute patterns. The primary security consideration is operational: launching a third-party assistant (claude) inside a worktree grants that assistant access to repository files and any secrets therein — users should only run trusted assistants and avoid placing secrets in the worktree. Overall the fragment appears BENIGN but with a small operational risk related to executing third-party tooling in-session. LLM verification: The skill's described behavior is generally consistent with its stated purpose (managing git worktrees and tmux sessions). It requires and invokes external tools (gh, jira CLI, and a 'claude' client) which increases supply-chain and data-exfiltration risk because those tools will use the user's credentials and network access. The presence of automatic 'claude' launches in sessions and documented third-party installs (brew) are the main risk signals. No direct evidence of malicious code or creden