github

The artifact is a legitimate GitHub automation skill, not directly malicious. However, it contains operational guidance that increases credential exposure risk—most notably instructing users to embed GITHUB_TOKEN in git remote URLs and mandating an unspecified create_pr tool without describing its trust boundary. Recommend removing the git remote set-url recommendation, adding explicit safe-carrying instructions (use gh auth, OS credential helpers, Authorization headers read from env, avoid command-line token embedding), require least-privilege tokens, and document how create_pr handles credentials and where it runs. With those mitigations the risk is low; as written, treat as moderate risk primarily due to credential leakage potential.