The Agent Skills Directory

Path Safety Standards: The document outlines best practices for resolving file paths using the ConfinedDir class to prevent directory traversal attacks.
Safe File Handling: It recommends using send_file instead of send_from_directory to ensure consistent path resolution and avoid Time-of-Check to Time-of-Use (TOCTOU) issues.
Deployment Security Guards: The guidelines include requirements for host filesystem access guards and mandatory sandboxing in multi-user deployment scenarios to mitigate risks associated with untrusted user input.

path-safety