github-assistant

The skill is coherent with its stated purpose: it diagnostically guides beginners through common Git/GitHub issues with explicit, step-by-step commands and official workflows. There are no evident malicious behaviors, no suspicious external data flows, and no credential harvesting patterns observed. Overall risk is low to moderate, primarily due to the potential for users to mishandle credentials if tokens or keys are shared inadvertently; however, the skill itself does not collect or transmit secrets.