babysit-pr

SUSPICIOUS: the skill’s capabilities align with PR babysitting, and its tool choices/data flows are mostly coherent and use official GitHub/Graphite paths. However, it is high risk because it gives an AI agent persistent autonomous authority to read untrusted PR content, modify code, push branches, and post public replies without per-action approval.