Review

This skill is coherent with a PR review purpose but has important mismatches and risky behaviors to consider before installing: - It uses many command-line tools (git, gh, grep, jq, etc.) but the skill metadata declares no required binaries. Expect failures or silent assumptions if those CLIs are absent — the publisher should list them. - The instructions perform network operations (git fetch origin/<base>) and use the GitHub CLI; those will use whatever credentials are configured in the user's environment (gh auth, git remotes). The skill doesn't declare or request authorization, so confirm you are comfortable with the tool using your existing CLI auth/session. - The SKILL.md includes AUTO-FIX steps that modify files directly. Ask the publisher to clarify whether the agent will always write changes automatically, and request a confirm-before-write option. Prefer an explicit prompt that shows edits and requires approval before applying them. - The skill expects repo-specific checklist files (.claude/skills/review/checklist.md, design-checklist.md). If these don't exist the skill may stop or behave unexpectedly; check the repository for these files or request fallback behavior. Before installing or enabling this skill, ask the publisher to 1) declare required binaries and their minimum versions, 2) document that it uses existing GH/Git auth and what it will access, and 3) add an explicit confirmation step for any in-place changes (or make auto-fixes opt-in). If you cannot verify those, treat the skill as potentially dangerous for automated write operations.