gm-skill

The skill is mostly coherent with its stated purpose: a local Plugkit-backed state machine that writes and reads spool files. The main risk is install/execution trust: it starts an unpinned external package (`gm-plugkit@latest`) as a silent background process, and the skill does not provide enough provenance to verify that package as the official same-publisher runtime. No strong signs of credential theft or intentional exfiltration are present in the skill text itself, but the remote package dependency makes this medium-risk and better classified as suspicious than fully benign.