dkod

SUSPICIOUS: The skill is broadly coherent with its stated purpose of parallel code editing via dkod, and the remote MCP install/auth pattern matches Anthropic’s documented workflow. However, it asks the agent to add a third-party MCP service/plugin, sends repository data to dkod-controlled endpoints, and can push PRs; combined with the unverified plugin publisher relationship, this makes it medium risk rather than benign.