configure-reusable-workflows

SUSPICIOUS: The skill's purpose and local capabilities are mostly aligned, but it establishes ongoing trust in externally maintained GitHub reusable workflows and forwards inherited secrets, including a Claude OAuth token, to that remote workflow context. This is not clearly malicious, yet the mutable @main reference and transitive secret exposure make it a medium-risk configuration skill rather than a benign local-only template generator.