differential-review

The provided fragment is a defensive, procedural differential review skill description. It outlines security review steps and tooling guidance, not executable code or data handling. In isolation, it presents benign intent with low direct security risk. The risk posture will depend on how reviewers apply these steps to actual diffs in projects; used improperly, the workflow could overlook risky changes, but the fragment itself does not introduce data exfiltration, credential exposure, or unauthorized actions.