ship

SUSPICIOUS rather than malicious. The core release capabilities match the stated purpose, but the skill performs autonomous repository actions and relies on a third-party AI review CLI that may send code externally. Official GitHub CLI usage is consistent; the main risk is external review/data flow and action-taking without explicit per-step approval.