church-anchor

SUSPICIOUS: The skill’s purpose is coherent, but it depends on a required church CLI whose provenance and official distribution could not be verified from the evidence. It also allows the agent to mutate workflow state, so the main issue is high supply-chain trust risk from an undocumented executable rather than overt malicious behavior.