ghmonitor

SUSPICIOUS: the core monitoring behavior is coherent and uses official GitHub tooling, but the skill exceeds passive monitoring by autonomously diagnosing failures, editing code/config, committing, and pushing up to 3 times without asking. The main risk is autonomous repository modification driven by untrusted CI log content, not malware or credential theft.