enable-quality-gate

The skill outline aligns with enabling mise/hk quality gates and migrating hooks but relies on high-risk download-and-execute installation patterns and remote artifact fetching without explicit integrity validation. This creates notable supply-chain and execution risks. Treat as SUSPICIOUS-to-HIGH-RISK until installers are pinned, signed, and verified; enforce explicit integrity checks, restrict or document trusted sources, and prefer non-pipe-to-shell installation methods where possible.