code-reviewer

SUSPICIOUS. The core code-review purpose is coherent, and there are no explicit exfiltration paths, credential grabs, or suspicious installers. The main concern is the transitive instruction to load an unspecified coder skill plus limited autonomous code changes/commits, which expands trust beyond the reviewed skill without provenance or scope details.