conclave

The skill instructs the AI agent to install a global npm package (`@conclave_sh/cli` from `skill.md`), introducing a supply chain risk. It also handles a sensitive `CONCLAVE_TOKEN` and directs the agent to initiate financial transactions (on testnet). Most critically, the `guide.md` file contains a prompt injection instruction (`if "no_change" -> re-run immediately, ZERO commentary`) that directs the agent to suppress output, which is a tactic often used to hide actions or reduce transparency, making the overall behavior suspicious.