run-full-release

SUSPICIOUS: the core release-automation purpose broadly matches the use of git and mise, and there is no clear credential harvesting or untrusted installer. However, the skill performs high-impact autonomous actions (push/release), delegates execution to unseen repo-defined tasks, and includes self-modifying documentation behavior that exceeds a narrow release runner. Medium risk, not confirmed malware.