Jentic

The 'jentic' skill acts as an API middleware but is classified as suspicious due to high-privilege installation steps in SKILL.md, including 'curl | sudo sh' for Docker and 'docker run' for service deployment. It also directs the agent to modify its own system instructions by appending content from references/tools-block.md to the workspace TOOLS.md. While these actions are intended for setting up a self-hosted proxy and include security warnings, the combination of root-level execution and self-modification of agent instructions represents a high-risk capability.