autopilot

SUSPICIOUS. The skill is largely coherent as a local repo automation pipeline and shows no explicit credential theft, exfiltration, or remote installer behavior. Risk comes from autonomous file-changing behavior driven by untrusted intake content and especially from unspecified dispatch to other skills, which creates a transitive trust gap disproportionate to a simple intake processor.