quality-gate

SUSPICIOUS: the core workflow is coherent for a quality-gate orchestrator and official GitHub data flows are proportionate, but the skill has moderate risk because it can autonomously post GitHub reviews and it delegates to unverified downstream skills while processing untrusted PR/code content.