agentic-coding-flywheel-setup

SUSPICIOUS. The skill's purpose broadly matches a VPS bootstrapper, but its default behavior is a high-risk remote installer that makes sweeping system changes, enables passwordless sudo, and introduces many third-party tools that will handle sensitive API keys. The main concern is supply-chain and overbroad system impact rather than confirmed malware.