codeagent

SUSPICIOUS: the skill's capabilities mostly match its stated coding-orchestration purpose, but it meaningfully expands execution trust. Main concerns are the nonstandard GitHub/private install path, automatic trust in injected local skills, and documented sandbox/permission bypass behavior that can let an AI coding agent act with fewer guardrails.