Documentation contains a destructive delete command without an explicit confirmation gate.
Warn
- Code
- suspicious.destructive_delete_command
- Location
- INSTALL.md:102
Security audit
Security checks across malware telemetry and agentic risk
This appears to be a legitimate project-management coding skill, but it has broad project automation powers that users should supervise.
Install this only if you want an agent to actively manage and modify software projects. Prefer a pinned release or reviewed commit, inspect the scripts before use, keep the WBS ledger clean of untrusted instructions, and require explicit confirmation for deployments, database changes, dependency changes, and destructive commands.
55/55 vendors flagged this skill as clean.
Detected: suspicious.destructive_delete_command