The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill interacts with the GitHub API (via the gh CLI) and the Jenkins API using the urllib library. It implements a security wrapper (_safe_urlopen) that strictly enforces the https:// scheme for all network requests, mitigating risks of insecure communication or protocol-based attacks.
[COMMAND_EXECUTION]: The script executes local git and gh commands to retrieve pull request metadata and search for test source files. These commands are invoked using subprocess.run with argument lists rather than shell strings, effectively preventing shell injection. Inputs like PR numbers are validated as integers, and test names are extracted using specific regex patterns.
[CREDENTIALS_UNSAFE]: The skill requires a Jenkins API token to authenticate requests. It correctly instructs users to provide this token via environment variables (e.g., through .envrc), which is a standard and recommended practice for managing secrets in a developer's local environment without hardcoding them.

make-ci-green