run-agent

Suspicious. The stated purpose matches a multi-adapter agent runner, and the referenced CLI appears to be same-project tooling, but the skill materially increases risk by cloning arbitrary remote repos, deriving behavior from repo-controlled files, and executing agents with user credentials. The main concern is transitive trust and prompt-injection exposure, not confirmed malware.