agent-native-reviewer

SUSPICIOUS: the skill's stated purpose is coherent and its contents are largely benign, but install trust is weakened by conflicting third-party distribution paths and a mutable GitHub zip from an unrelated owner. No evidence of credential harvesting or exfiltration appears in the skill itself, so the main risk is supply-chain and transitive installation rather than malicious behavior.