bot-boot

SUSPICIOUS. The skill is largely aligned with its stated bot-boot purpose and has no clear supply-chain or credential-theft behavior, but it creates persistent autonomous cron actions and converts local JOBS.yaml prompt content into scheduled future execution. That persistence and prompt-ingestion behavior make it medium risk even without evidence of malware.