fix-pr-reviews

SUSPICIOUS: the skill’s core purpose is coherent, and its tooling/data flow stay within GitHub and Git, but it gives an agent a high-risk path from untrusted PR/comment content to code modification and automatic commit/push. The main concern is indirect prompt injection plus autonomous external actions, not malware or supply-chain abuse.