eval-creator-ci

SUSPICIOUS: the core behavior matches a CI eval runner, and GitHub/gh-aw usage is mostly coherent, but the install path relies on transitive third-party skill installation from a personal repo, the extension version is loosely pinned, and the skill enables headless command execution plus automated PR/check actions. This looks proportionate to CI eval automation, not overtly malicious, but the trust chain and autonomous workflow impact raise medium risk.