coderabbit-resolver

The skill is purpose-aligned and does not show obvious malware or suspicious installer behavior, but it is still high-impact: it lets an agent act on untrusted PR/comment content, push code, merge PRs, and delete branches, including in bulk. Overall this is best classified as SUSPICIOUS from an agent-safety perspective due to autonomy and prompt-injection exposure rather than credential theft or malicious supply-chain behavior.