The Agent Skills Directory

[COMMAND_EXECUTION]: The skill invokes external binaries including soffice (LibreOffice), git, and gcc using subprocess.run. These executions use list-based arguments, which is a secure implementation that prevents shell command injection vulnerabilities.\n- [COMMAND_EXECUTION]: In scripts/office/soffice.py, the skill performs runtime compilation of a C shared library (lo_socket_shim.so) from an embedded source string. This library is then injected into the LibreOffice process using the LD_PRELOAD environment variable to shim UNIX socket calls, allowing the application to run in restricted sandbox environments.\n- [COMMAND_EXECUTION]: The scripts/recalc.py script automatically installs a StarBasic macro into the LibreOffice user configuration directory. This macro is used to automate the recalculation and saving of spreadsheet files, though it also functions as a persistence mechanism within the LibreOffice application environment.\n- [SAFE]: The skill demonstrates defensive programming by utilizing the defusedxml library for XML parsing across its validation and processing scripts. This provides protection against XML External Entity (XXE) expansion attacks when handling untrusted Office documents.

xlsx