The Agent Skills Directory

[SAFE]: The skill implements robust path validation to prevent directory traversal. The runtime_utils.py script includes functions like safe_rel_path and resolve_under that explicitly forbid absolute paths and parent directory references (..), ensuring all file operations are confined within the user-provided work directory.
[COMMAND_EXECUTION]: Command execution is limited to the xelatex utility for compiling PDF documents. The execution is handled via subprocess.run with a list of arguments, avoiding shell injection risks. Input parameters for the command are derived from validated configuration and template files.
[SAFE]: The skill uses yaml.safe_load for parsing configuration files, preventing potential arbitrary code execution via unsafe YAML deserialization.
[SAFE]: The render_budget_project.py script automatically escapes LaTeX special characters (such as %, &, #, _, {, }) in the generated text segments. This practice prevents compilation errors and mitigates risks associated with processing untrusted natural language input within a LaTeX context.

nsfc-budget