implement

SUSPICIOUS: the skill’s core purpose is coherent for a software-implementation workflow, and it mostly uses expected local developer tooling. However, it grants broad execution authority, includes autonomous git/GitHub actions, pulls in external content while able to write/execute, and chains into other skills; these make it medium-high risk even without clear malicious intent.