The Agent Skills Directory

[COMMAND_EXECUTION]: The skill and its references (references/architectural_reduction.md) explicitly promote the "File System Agent Pattern," which involves providing the agent with a tool to execute arbitrary bash commands. This capability allows the agent to run any shell utility (such as grep, cat, and find) on the host system or within a sandbox environment.
[REMOTE_CODE_EXECUTION]: By providing a generic execute_command tool for "arbitrary bash" execution, the skill establishes a high-risk attack surface. If an agent using this architecture processes untrusted input, an attacker could potentially inject malicious shell commands that the agent then executes, leading to full remote code execution.

tool-design