The Agent Skills Directory

[SAFE]: The skill functions as a technical documentation resource for React Native developers. All instructions and examples align with industry-standard performance optimization techniques.
[COMMAND_EXECUTION]: The skill includes shell commands for routine development tasks such as bundling JavaScript, analyzing APK sizes, and measuring performance metrics (e.g., npx react-native bundle, ./gradlew bundleRelease, flashlight measure). These commands are intended for local developer use and do not exhibit malicious intent.
[EXTERNAL_DOWNLOADS]: The skill references several reputable developer tools and services, including Bundlephobia, Emerge Tools, and Flashlight. It explicitly instructs users to verify the provenance of third-party packages and includes warnings against piping remote scripts directly to a shell, demonstrating a strong security posture.
[REMOTE_CODE_EXECUTION]: The documentation for Re.Pack code splitting describes a mechanism for loading remote JavaScript chunks. However, this is accompanied by a robust security model that recommends using first-party HTTPS origins, fixed allowlists, and integrity verification, rather than encouraging unsafe execution of arbitrary remote code.

callstack-best-practices