gui-control

SUSPICIOUS. The skill's capabilities are largely consistent with its stated purpose of local GUI automation, and no credential harvesting or remote exfiltration is described. The main concern is trust: it relies on an external autopcb-shell binary whose public provenance could not be verified, so the overall risk is elevated despite otherwise coherent local-only behavior.