The Agent Skills Directory

[COMMAND_EXECUTION]: The skill executes specialized Node.js scripts (getnote.mjs, oauth-poll.mjs) to process note operations and authentication flows. These scripts are strictly scoped to the Get笔记 API and do not perform arbitrary command execution.
[EXTERNAL_DOWNLOADS]: All network interactions are directed to the official Get笔记 API endpoint (https://openapi.biji.com) or to authorized Object Storage Service (OSS) hosts provided by the API for image uploads. These operations are core to the skill's functionality for saving notes and images.
[DATA_EXFILTRATION]: The skill reads local files specifically when requested by the user to save them as notes or images to the Get笔记 service. This behavior is transparent and gated by user-provided command-line arguments.
[CREDENTIALS_UNSAFE]: The skill follows security best practices for credential management. It uses a dedicated local configuration file (auth.json) outside the skill repository and includes logic in scripts/common.mjs to redact API keys and authorization headers from all console outputs, preventing accidental exposure.

getnote