herdr-pm-agent

SUSPICIOUS. The skill's capabilities mostly match its stated PM/orchestration purpose, so it does not read like credential theft or covert exfiltration. However, it grants broad cross-pane command authority, transcript access, parallel executor control, and high-autonomy operation, including a mode that can skip risky-action approval; that makes it a high-impact orchestration skill with meaningful operational risk even though the behavior is internally coherent.