feat(sweep): Add master tracking issue for sweep PRs

[dcramer]

Sweep PRs currently go up as isolated draft PRs with no central coordination
point. Reviewers seeing individual fix: ... PRs labeled warden have no way
to understand the full sweep scope, which files were checked, what was found,
or how the PRs relate to each other.

This adds a tracking issue created between the verify and patch phases. Every
PR references the issue via Ref #N, and the organize phase posts a completion
comment with a task list reviewers can check off as they work through PRs.

New script: create_issue.py

• Creates a GitHub issue summarizing scan stats, verified findings, and skills run
• Idempotent: skips if issueUrl already exists in manifest
• Defensively ensures the warden label exists before creating the issue
• Writes issueUrl, issueNumber, and phases.issue to manifest

Updated: organize.py

• New update_tracking_issue() posts a completion comment on the tracking issue
  with a summary table (created/skipped/failed/security) and a PR task list

Updated: SKILL.md

• New Phase 3 (Issue) between Verify and Patch
• Patch renumbered to Phase 4, Organize to Phase 5
• PR body template includes conditional Ref #${ISSUE_NUMBER}
• Resume section updated with issue phase idempotency note

Collateral improvements (from code review/simplifier pass):

• Extracted read_json, write_json, severity_badge, pr_number_from_url into _utils.py
• find_reviewers.py now excludes the current GitHub user from reviewer suggestions
• scan.py and generate_report.py now separate timeouts from errors in output

[cursor]

Cursor Bugbot has reviewed your changes and found 2 potential issues.

^{Bugbot Autofix is OFF. To automatically fix reported issues with Cloud Agents, enable Autofix in the Cursor dashboard.}