pipeline

SUSPICIOUS: the skill's core orchestration behavior broadly matches its stated purpose, but its footprint is high-risk for an AI skill because it can autonomously push/merge code, spawn subagents, process untrusted repo content, and instruct transitive installation of additional third-party skills. The main concerns are autonomy and trust expansion rather than confirmed malware or explicit credential exfiltration.