dreamtime

SUSPICIOUS. The skill’s core issue is unattended background autonomy: it silently reads personal context, performs open-ended web research, and directly rewrites persistent memory files without user review. There is no clear credential theft or malicious payload, but the combination of stealthy operation, untrusted web inputs, and write access makes the skill high-risk for integrity and prompt-injection abuse.