pr-review-fixer

SUSPICIOUS rather than malicious. The core GitHub review/CI-fix workflow is purpose-aligned and uses official GitHub APIs, but the skill depends on an unverifiable `rune` CLI and grants broad autonomous repository actions including commenting, resolving threads, committing, and pushing. No direct credential theft or non-GitHub exfiltration is evident, but the external CLI trust gap and autonomous execution make the skill high risk.