The Agent Skills Directory

[CREDENTIALS_UNSAFE]: The skill manages sensitive API credentials by storing them in a local configuration file (~/.chanjing/credentials.json) with restricted filesystem permissions (0600). It follows best practices by instructing the agent to mask these values in chat and warning users about history privacy.\n- [COMMAND_EXECUTION]: Subprocess execution is confined to the skill's own utility scripts and standard system commands for opening a browser. These operations are restricted to the skill's documented purpose and handle user input via standard argument parsing.\n- [EXTERNAL_DOWNLOADS]: Network requests are directed exclusively to the official vendor domain (open-api.chanjing.cc) for authentication and token management. No untrusted third-party code is downloaded or executed.

chanjing-credentials-guard