changelog-orchestrator

The changelog orchestrator skill presents a coherent, purpose-aligned capability set: it ingests repo activity, renders a changelog using templates, assesses quality, and prepares or opens a PR. The data flows involve legitimate sources (repo data, Slack optionally) and standard outputs (CHANGELOG.md, branch, PR). The main security considerations are ensuring proper sanitization of inputs to avoid command injection, secure handling of credentials (GITHUB_TOKEN) with minimal exposure, and avoiding any unintended data leakage through logs or external endpoints. Overall, the footprint is proportionate to the stated purpose with moderate security risk mainly around input sanitization and credential handling. Recommend ensuring internal script sanitization, secrets handling best practices, and explicit logging controls in any CI usage.