harness-engineering-playbook

SUSPICIOUS: the skill’s stated repo-bootstrap purpose is coherent and no direct credential harvesting is shown, but installation relies on a transitive `npx skills add` trust chain with partially verified publisher provenance, unpinned remote code, and default CLI telemetry to `skills.sh`. This is best classified as medium risk supply-chain exposure rather than malware.