Hooks Automation

SUSPICIOUS. The skill is broadly aligned with hook automation, but its footprint is large: a third-party alpha CLI is installed as the control plane, hooks execute automatically across many tool events, and untrusted tool parameters are interpolated into shell commands. No clear credential theft or overt exfiltration is shown, so this is not confirmed malware, but it carries meaningful supply-chain and execution-surface risk.