swain-release

SUSPICIOUS. Most capabilities fit a release-automation skill and there is no evident credential theft or third-party data routing, but the instruction to derive data from the system prompt is a clear misalignment, and the skill executes unspecified repo-local scripts plus processes untrusted repo content while holding write/exec privileges. Overall this looks like a legitimate but risky release skill with one high-severity prompt-boundary issue rather than confirmed malware.