ops-go

SUSPICIOUS. The skill's business-ops purpose is coherent, but its actual footprint is broader than a simple dashboard: it executes several unverifiable local binaries, accesses multiple communication/account surfaces through third-party CLIs, and can trigger follow-on task/schedule actions. The strongest concern is install/execution trust for the opaque ops-* binaries; absent provenance, checksums, or source linkage, this must be treated as high security risk even without proof of malicious intent.