session-compound

SUSPICIOUS: the core reporting behavior is coherent and mostly local, but the skill also performs ecosystem skill discovery and explicitly sets up downstream `skills add` installations. That transitive trust chain, combined with unpinned `npx` execution and access to sensitive session logs, makes this higher-risk than a normal summarization skill, though there is no clear evidence of direct credential theft or malicious exfiltration.