The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: References documentation and API standards from well-known services and organizations, including GitHub, Stripe, and official language registries (e.g., docs.rs, pkg.go.dev, readthedocs.io). These references are used as exemplars for design research and do not involve remote script execution.\n- [COMMAND_EXECUTION]: Employs standard local development tools such as rg (ripgrep), git, cargo, go, and yq to inventory and audit the project's source code surface. These tools are used for static analysis of the codebase.\n- [PROMPT_INJECTION]: The skill processes local source code from the project's src and tests directories, posing a potential surface for indirect prompt injection. While explicit boundary markers and sanitization are absent, the risk is minimized by the skill's capability inventory being restricted to structural pattern matching tools (rg, git, cargo, go, yq, npx) rather than interpreting or executing file content as instructions.

api-review