The Agent Skills Directory

[COMMAND_EXECUTION]: The skill facilitates the execution of standard Rails development commands, including test suite runners (bundle exec rspec, bundle exec rails test), dependency management (bundle update), and Rails configuration updates (rails app:update). These are essential for validating and implementing the upgrade process.
[EXTERNAL_DOWNLOADS]: The skill performs network requests to the official RubyGems API (rubygems.org) to verify the latest patch versions of Rails. This ensures that the application is on a secure and stable baseline before proceeding with minor or major version upgrades.
[DATA_EXFILTRATION]: The skill includes a workflow to check gem compatibility by sending the project's Gemfile.lock to the railsbump.org API. While this involves sending project metadata externally, it is a transparent and standard practice for assessing dependency compatibility in the Rails ecosystem.
[PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it reads and processes contents from the user's codebase (e.g., Gemfile, config/application.rb, and other source files) to generate upgrade reports. However, the risk is minimal as the skill is designed for development environments and incorporates human-review steps.

rails-upgrade