The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes Node.js execSync and Python subprocess.run for environment validation, benchmark automation, and smoke testing. These executions are confined to internal utility scripts within the package and do not expose the system to arbitrary command injection from untrusted external sources.
[SAFE]: The installation utility bin/stylekit-skill.js handles the deployment of the skill payload to the local agent's environment using standard file system operations. It includes version checks for dependencies like Python and Node.js to ensure compatibility.
[SAFE]: Input processing for user queries and reference design data is handled via robust parsing logic (e.g., json.loads) and tokenization for search. No execution of user-controlled strings was found in dangerous sinks.
[SAFE]: The skill incorporates a dedicated quality gate (qa_prompt.py) that audits generated prompts for conflicts and best practices, effectively serving as a security layer for the output it produces.
[SAFE]: No hardcoded credentials, unauthorized access to sensitive system paths, or suspicious outbound network communication patterns were identified.

stylekit-style-prompts