user-story-implementer

SUSPICIOUS. The skill’s repo-automation purpose broadly matches its capabilities, and it uses official GitHub tooling rather than suspicious third-party infrastructure. However, it gives an AI agent autonomous real-world write actions on a repository and processes untrusted GitHub content with write/exec permissions, which is a meaningful security risk even without clear malicious intent.