skill-guard

SUSPICIOUS. The core purpose is coherent for a security-audit skill, and there is no clear credential theft or hidden exfiltration. However, the skill has disproportionate write capabilities for an analyzer: it can commit, push, fork, and open PRs on GitHub, creating autonomous external actions and expanding risk beyond local review. Safe only with strict per-action user approval and no automatic publishing.