orca-workflow

SUSPICIOUS. The skill is mostly coherent as an orchestration workflow, but its footprint is broader than a simple proposal tool: it can dispatch tasks to other agents and automatically sync modified skill files to a remote GitHub repo over SSH. No clear malware or hidden exfiltration is present, yet the outbound repo sync and multi-agent action surface make this a medium-risk skill that should be used only with explicit user oversight.