work-on-issue

[Skill Scanner] Backtick command substitution detected BENIGN: The skill fragment is a coherent automation workflow intended to manage GitHub issues with a TDD-driven worktree approach. It does not reveal malicious behavior or credential harvesting in the code shown, and its capabilities align with its stated purpose. Potential risks are operational (unvalidated inputs, reliance on external agents, and autonomous execution prompts) rather than security-exploit risks. LLM verification: SUSPICIOUS - The skill's functional purpose is valid for automating TDD work on an issue, but the implementation contains multiple risky practices: unvalidated insertion of $ARGUMENTS into shell commands and paths (leading to command injection and path traversal), execution of repository-local scripts in the main context without integrity checks, and spawning subagents that fetch external content which is then used unsafely. Mitigations before use: (1) validate and strictly whitelist/parse issue