design-shotgun

SUSPICIOUS. The core design-generation workflow is broadly consistent with the stated purpose, and the binaries appear same-ecosystem rather than arbitrary third-party payloads. However, the skill’s footprint is oversized for a design brainstormer: it executes several local CLIs, writes persistent analytics/taste data, may send optional telemetry through a wrapper binary, and includes unrelated repo-modifying/commit behavior from the shared gstack preamble. This looks more like a powerful gstack platform skill than a narrowly scoped design helper, so the main issue is scope and trust expansion rather than confirmed malware.