design-fast

Suspicious rather than malicious. The stated design purpose is plausible, but the skill is not self-contained and depends on multiple other skills/subagents plus a local script from another skill directory, creating medium transitive-trust and prompt-injection risk. No direct credential harvesting, exfiltration endpoint, or clearly malicious behavior is present in this fragment.