deep-review

SUSPICIOUS: the skill is broadly aligned with automated code review, but it has a high-impact autonomous fix-and-stage loop and optional third-party data sharing to external AI CLIs. It does not show clear malware or credential-stealing behavior, yet its write/exec authority over untrusted code and outbound review flows make it a medium-high risk skill.