The Agent Skills Directory

[REMOTE_CODE_EXECUTION]: The scripts/install.sh script fetches and executes a shell script directly from https://plannotator.ai/install.sh using curl -fsSL ... | bash. This allows arbitrary code execution from a third-party source not included in the trusted vendor list.\n- [EXTERNAL_DOWNLOADS]: The skill downloads and installs various components and tools from unverified third-party sources, including domains such as plannotator.ai and GitHub repositories not listed as trusted.\n- [COMMAND_EXECUTION]: Multiple scripts, including setup-claude.sh, setup-codex.sh, setup-gemini.sh, and setup-opencode.sh, programmatically modify the AI agent's global configuration files located in the user's home directory (e.g., ~/.claude/settings.json, ~/.codex/config.toml, ~/.gemini/settings.json).\n- [REMOTE_CODE_EXECUTION]: The setup process injects automated execution hooks into the AI agent's environment, such as ExitPlanMode for Claude Code and notify for Codex. These hooks are configured to automatically trigger the execution of local scripts or external binaries like plannotator in response to agent lifecycle events.\n- [COMMAND_EXECUTION]: The cleanup script scripts/worktree-cleanup.sh executes git commands to prune worktrees and includes functionality to force-remove directories, which can lead to the deletion of uncommitted changes.

omu