research-note

SUSPICIOUS: The skill’s core note-writing behavior is coherent, but it also instructs the agent to delete source material and commit to git automatically without user confirmation. There is no sign of credential theft, malware, or suspicious installation, but the autonomous destructive and version-control actions make the skill high-risk for unintended repository changes.