The Agent Skills Directory

[SAFE]: The skill interacts only with the well-known, official Canva API endpoint (api.canva.com) to perform connectivity and authentication checks.
[SAFE]: Sensitive credentials like CANVA_ACCESS_TOKEN and CANVA_CLIENT_ID are managed through environment variables rather than being hardcoded, which aligns with security best practices.
[SAFE]: The diagnostic script handles API responses by piping them directly to log files or standard formatting tools (json.tool), minimizing the risk of indirect instruction execution.
[SAFE]: Explicit documentation is provided to ensure users redact tokens and private identifiers before sharing the generated debug bundle with support teams.

canva-debug-bundle