publish-skill

SUSPICIOUS: the skill’s behavior mostly matches its stated purpose, but it has a meaningful risk footprint because it republishes instruction files, installs skills transitively via the skills CLI, and can push/cherry-pick changes across repos. Install provenance appears consistent with official skills tooling, so this is not malware, but the combination of transitive skill installation and autonomous repo actions makes it medium risk.