skill-finish-branch

SUSPICIOUS: the core branch-management behavior is coherent, and GitHub CLI usage is official and expected. Risk comes from the mandatory third-party Claude Octopus review step, which routes code diffs to external provider tooling and may receive API keys, making the overall footprint broader than a simple finish-branch skill.