ultimate-git

The Ultimate Git skill presents a coherent, purpose-aligned toolset for managing Git/GitHub workflows via the official gh CLI. It emphasizes non-destructive operations, proper branching strategies, and conventional commits, which aligns with legitimate developer tooling. The footprint is proportionate: it relies on gh (an official tool) and standard GitHub API calls, requiring only typical credentials in the form of GitHub token scopes. There are no evident supply-chain or data-exfiltration risks in the described design. The primary risk area is credential handling (token scopes) which is expected but should be clearly documented and secured by instructing users to supply tokens via standard authentication methods (gh login) rather than embedding secrets. Overall, the skill is BENIGN with LOW to MEDIUM security risk primarily due to dependency on an authenticated CLI and the potential for destructive actions if misused, but with explicit safeguards baked into its rules.