comet-build

SUSPICIOUS: mostly coherent for a build-orchestration skill, but the required transitive loading of multiple other skills and execution of repo-configured commands expands trust beyond this skill itself. No direct credential theft or off-platform exfiltration is present, so this looks like a moderate workflow/supply-chain risk rather than malware.