canary

SUSPICIOUS. The core canary behavior is coherent and mostly read-only, and the Bun installer evidence looks same-org/official rather than a random payload. But this skill's actual footprint is much broader than post-deploy monitoring: large preamble execution, helper-binary delegation, telemetry/artifact-sync paths, and optional project-file mutation/commits. That makes the skill internally over-scoped for its stated purpose, though not clearly malicious.