init-monorepo

Overall mostly coherent and purpose-aligned for monorepo scaffolding, but the transitive installation of additional agent skills is a material trust expansion and the use of unpinned `@latest` remote execution raises medium supply-chain risk. This is suspicious rather than malicious.