git-workflow

SUSPICIOUS. The skill’s overall purpose is coherent for git/PR automation, and its data flows mostly match GitHub workflow tasks, but its core reliance on an unverified `gh-tool` and its autonomous handling of untrusted PR comments, code edits, pushes, and public replies increase risk. This looks more like an overpowered workflow skill than confirmed malware, with medium-high security risk driven by execution trust and indirect prompt-injection exposure.