operon-fs-execs

SUSPICIOUS: the capability set matches a remote filesystem/exec skill, but it relies on an unverifiable external `operon` CLI and grants broad remote read/write/exec/mount powers. No explicit credential theft or off-platform exfiltration is shown, so this is high-risk/vulnerable rather than confirmed malware.