styleguide

SUSPICIOUS. The core file-generation behavior matches the stated purpose, but the skill overreaches by extracting a GitHub token, storing it unencrypted in `~/.git-credentials`, changing global git credential settings, and autonomously pushing to `main`. Data flows go to official GitHub endpoints rather than attacker infrastructure, so this is not confirmed malware, but it is a high-risk, disproportionate credential-handling and autonomous-action design for a style-guide skill.