bitbucket

This file is an operational/instructional skill to manage Bitbucket resources using a BITBUCKET_TOKEN. It is not overtly malicious, but it contains security-risk guidance: specifically, instructing embedding the token in a git remote URL and unqualified use of an external create_bitbucket_pr tool. These practices increase the probability of credential leakage or credential forwarding to an untrusted component. Recommendations: avoid embedding tokens in URLs, prefer credential helpers or short-lived/minimal-scope tokens, verify the provenance and behavior of create_bitbucket_pr before forwarding credentials, and require explicit user confirmation for push/PR actions. Overall: moderate security risk centered on credential handling rather than malicious intent.