fix-ui

SUSPICIOUS: the core UI-fix workflow is broadly aligned with its purpose and includes user-approval gates, but it significantly expands scope through transitive use of many other skills/subagents and iterative automated actions. Risk is driven more by inherited trust and indirect content handling than by overt credential theft or malicious data flows.