team

SUSPICIOUS: the skill is purpose-aligned and uses mostly legitimate local/official tools, but it enables high-impact parallel agent execution, broad local command/file access, and reduced permission friction in worker panes. This looks like an operational orchestration skill rather than credential theft, yet its autonomy and permission scope make it medium-high security risk.