fix-ci

SUSPICIOUS: The skill's purpose and GitHub-centric capabilities mostly align, and install trust is low risk because it relies on GitHub's official CLI. The main concern is proportionality and data-flow control: it tells the agent to consume untrusted external check links and then autonomously modify code and push changes in a loop, creating indirect prompt-injection and autonomous action risk even without explicit malicious exfiltration.