design-council-orchestration

SUSPICIOUS: the skill’s stated purpose matches multi-agent orchestration, file reads, and decision-log writes, and it does not request secrets or show direct exfiltration. The main concerns are medium supply-chain risk from installing via a personal GitHub marketplace, explicit transitive plugin installation, and broad autonomous agent/action scope over local project content. This is not confirmed malware, but it is higher-risk than a normal documentation skill.