The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill references front-end libraries (rippleui, webjsx) via jsDelivr CDN. These are well-known services used for UI rendering and styling. It correctly recommends pinning versions (e.g., @0.0.42) to prevent breaking changes and supply chain risks.
[COMMAND_EXECUTION]: The skill uses npx flatspace within a GitHub Actions environment (.github/workflows/pages.yml). This is the intended purpose of the skill to aggregate content and is performed in a sandboxed CI environment, not on the user's local machine or the agent's host.
[REMOTE_CODE_EXECUTION]: No remote code execution patterns were detected. The project specifically avoids .jsx transpilation and complex build steps, opting for native browser ESM via importmaps.
[DATA_EXFILTRATION]: No sensitive file access or unauthorized network requests were detected. All network operations (fetching JSON data in app.js) are relative to the local deployment path (./data/index.json).
[PROMPT_INJECTION]: The instructions do not contain attempts to override safety filters or extract system prompts. The 'Scaffold sequence' instructions are clear, descriptive, and intended to guide the agent in project setup.

pages