archon

SUSPICIOUS: the skill is purpose-aligned and not overtly malicious, but it grants a high-autonomy agent broad command, file-write, delegation, and persistence powers, including optional continuous execution. Main concern is operational risk from unattended multi-session actions and trust in unseen repo-local scripts, not credential theft or clear exfiltration.