The Agent Skills Directory

[SAFE]: Static Content Analysis: The skill is composed entirely of Markdown documentation (SKILL.md and workflow-phases.md). No script files, binaries, or executable code blocks are present, effectively eliminating categories related to remote code execution, persistence, or privilege escalation.
[SAFE]: Instruction Integrity: The instructions provide a structured guide for development workflows (Planning, Testing, Implementation, etc.) and do not contain any prompt injection attempts or commands designed to bypass safety filters or override agent behavior.
[SAFE]: Data and Network Security: No hardcoded credentials, sensitive file path access, or unauthorized network operations were detected. All external references point to the developer's legitimate GitHub repository (AsiaOstrich/universal-dev-standards), which is consistent with the skill's metadata and purpose.
[SAFE]: Capability and Tooling: While the skill configuration limits tool usage to Read, Grep, and Glob, the instructions themselves do not direct the agent to perform risky file system or network operations. The orchestration of commands like /scan or /security refers to other potential skills within the ecosystem and does not introduce vulnerabilities here.

dev-workflow