improve

SUSPICIOUS: the skill’s capabilities mostly match its stated repo-improvement purpose, and there is no obvious credential theft or third-party installer abuse. The main risk is autonomous operation combined with external research ingestion and the ability to modify files, run commands, and commit changes, which creates a significant indirect prompt-injection and unwanted-action surface.