paseo-epic

SUSPICIOUS. The skill is internally coherent for repo orchestration and does not show clear credential theft or hidden exfiltration, but it grants a long-running agent significant autonomous power over source control and PR workflows, and it delegates to additional skills transitively. Risk is high from autonomy and trust chaining, not from confirmed malware.