lifecyclemodel-recursive-orchestrator

Overall suspicious rather than malicious. The capability set is coherent for a local orchestration skill and the documented data flow is local-only, but the core dependency on an unverifiable tiangong CLI creates a high supply-chain trust concern. No evidence here of credential harvesting, covert exfiltration, remote posting, or hidden execution.