skill-debate

Mostly coherent with its stated purpose as a multi-model debate orchestrator, but it has meaningful security risk from external CLI trust, local helper-script execution, and sending potentially sensitive project context to third-party AI providers. This looks suspicious-by-scope rather than malicious: the main concerns are data exposure and trust-chain breadth, not overt credential theft or covert exfiltration.