The Agent Skills Directory

[COMMAND_EXECUTION]: The skill instructions direct the agent to run local project commands such as lint, test, and build, as well as a specific development script scripts/dev-check.sh. These operations are standard for development automation and occur within the project context.
[DATA_EXPOSURE]: The skill reads and writes to local project-related files (Markdown and JSON). It does not access sensitive system paths or credentials, and its file operations are limited to project task management.
[PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection because it ingests data from external project files like tasks/todo.json and current-sprint.json.
Ingestion points: PROJECT.md, current-sprint.json, and tasks/todo.json referenced in SKILL.md.
Boundary markers: Absent.
Capability inventory: File system writes to project directories and execution of local shell commands.
Sanitization: No specific sanitization or validation of the file contents is mentioned.

plan-agile-development