[Allstar]

Since this project does not publish its source-code, or publish its binaries on an official store-front, I feel the need to call out to be aware of malicious code.

[Lalabadie]

I think it's the first time I see a Github repo used as a sort of advertisement (without actual code – there's plenty of performative OSS out there).

The whole thing feels more clumsy than malicious, but without any in-use video I'm still suspicious.

My first thought is "post it on Github and share it on HackerNews" is a thing ChatGPT would advise to someone asking how to promote an app they built.