codex-autoresearch-skill

SUSPICIOUS: the skill’s core behavior largely matches its stated purpose, but it normalizes high-risk autonomy by recommending bypassed approvals, background execution, persistent hooks, inferred shell command execution, and optional web-search-driven iteration. The install path is transparent source code from GitHub rather than an opaque binary, so this is not confirmed malware, but it is a high-risk autonomous agent skill.