The Agent Skills Directory

[COMMAND_EXECUTION]: The helper scripts in the scripts/ directory (snapcraft-hold-editor, snapcraft-import-editor, and snapcraft-sign-and-ack) execute local system binaries including snap, snapcraft, and snapctl. These operations are essential for managing and testing configuration database schemas within the snap ecosystem.
[COMMAND_EXECUTION]: The snapcraft-hold-editor script supports the execution of a user-defined editor through the REAL_EDITOR environment variable. This is a standard and expected pattern for CLI-based developer tools and does not represent an injection vulnerability in this context.
[SAFE]: The Python utility yaml-to-sign-json.py uses yaml.safe_load() for parsing configuration data, which is a best practice to prevent arbitrary code execution during deserialization.
[SAFE]: The documentation and scripts emphasize a 'local-first' development workflow, enabling developers to sign and verify schemas locally without requiring immediate interaction with or authentication to the Snap Store until the final publication phase.

adopt-snapcraft-confdb