The Agent Skills Directory

[COMMAND_EXECUTION]: The skill makes extensive use of local shell commands via git and gh (GitHub CLI). These are used to determine diff scope, checkout branches, fetch PR metadata, and manage the code review lifecycle. These operations are necessary for the skill's function and do not involve unauthorized privilege escalation.
[EXTERNAL_DOWNLOADS]: The skill interacts with GitHub's official services through the gh tool to fetch PR information and metadata. These interactions are directed at well-known technology infrastructure and are essential for the primary purpose of the skill.
[REMOTE_CODE_EXECUTION]: The skill executes a bundled local script, scripts/resolve-base.sh, to identify the base branch for diffing. This is a standard practice for complex logic that is more easily handled via shell scripts than direct prompt instructions.
[DATA_EXFILTRATION]: While the skill processes project code and metadata, its network operations are restricted to authorized GitHub interactions (via gh) and local artifact storage in /tmp/. There is no evidence of sensitive data being transmitted to unauthorized third-party domains.

ce-code-review