explore

SUSPICIOUS: the core purpose is legitimate codebase exploration, but the footprint is somewhat broader than necessary because it combines untrusted repository analysis with Bash, automatic hook execution, and multi-agent autonomy. No clear credential theft, external exfiltration, or malicious installer is present, so this is not malware; the main concern is prompt-injection and over-broad execution capability for a read-heavy exploration skill.