pull-request-review

SUSPICIOUS: the stated purpose matches the git/PR capabilities and official CLI usage, but the skill expands into high-risk territory by following arbitrary repository setup instructions, processing untrusted PR content with command execution available, and delegating to another skill. No clear credential theft or malicious exfiltration is present, but the review workflow is risky for an AI agent.