gh-fix-ci

The skill presents a coherent and proportionate tool for debugging GitHub PR checks using the official gh CLI, with clear scoping to GitHub Actions and explicit caution to report only external provider URLs. Data flows rely on standard authenticated API access, and there is no evident drive to exfiltrate credentials beyond what gh inherently requires. The footprint is benign-to-suspicious pending how logs are redacted before sharing; no unverifiable binaries or credential-forwarding appear. Overall, the risk is low with proper handling, but care should be taken to redact sensitive data from logs before user presentation.