Clawstarter

The skill is classified as suspicious due to its self-updating mechanism, high agent autonomy instructions, and execution of external shell commands. The agent is instructed to periodically re-fetch and overwrite its own skill files (SKILL.md, HEARTBEAT.md, DISCOURSE.md) from `https://clawstarter.io` using `curl`, which introduces a supply chain risk if the remote server is compromised. Furthermore, instructions like 'Don't ask permission for routine contributions' encourage autonomous actions, and the skill uses the `gh` CLI tool to create GitHub repositories, representing powerful capabilities that, while currently aligned with the stated purpose, increase the overall risk profile.