github-repo-explore

SUSPICIOUS. The skill's stated purpose matches its capabilities and uses official GitHub tooling, so install trust and data flow are mostly coherent. The main risk is that it pulls large amounts of untrusted external content into an agent workflow that also has shell and file access, creating a high indirect prompt-injection surface; overall this is risky but not malicious.