sync-skill-to-jay

SUSPICIOUS: The skill's purpose broadly matches repo sync/publish automation, but its footprint includes pushing local content to GitHub, deleting the local skill, and installing a remote skill via `npx skills add`. The main concern is transitive skill installation and moderate supply-chain risk from treating a personal GitHub repo as the reinstall source for agent-executed instructions.