ruthless-refactorer

This refactor skill should be treated as potentially risky but not overtly malicious. The main concerns are the instruction to run a specific user-home script and the lack of scoped file-access rules. Recommendations: disallow executing arbitrary home-directory scripts by default, restrict reads to the repository tree with a deny-list for common secret files, require operator confirmation before file-write/delete actions, and sanitize any output from state.json or shell commands before reuse or display. With those controls, the skill's functionality is appropriate for refactoring tasks.