The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill downloads and installs the core printing-press binary from the author's GitHub repository (github.com/mvanhorn/cli-printing-press) during the setup phase. As a vendor-owned resource, this is consistent with the skill's operational requirements.
[COMMAND_EXECUTION]: The skill heavily utilizes the Bash tool to orchestrate a development workflow, including running Go tools (go build, go vet, gofmt), performing directory diffs, and managing Git/GitHub operations (git, gh) for PR creation.
[REMOTE_CODE_EXECUTION]: The skill dynamically modifies Go source code (e.g., adding help guards or descriptions) and subsequently invokes go build to compile the resulting code. This is a primary function of the skill and occurs within a forked execution context.
[PROMPT_INJECTION]: The skill ingests data from external manuscript and specification files (research.json, spec.json) to populate CLI metadata and documentation. While this creates a potential surface for indirect prompt injection, the skill operates in a restricted fork context and uses agentic review steps to verify output plausibility.
[SAFE]: The skill demonstrates security best practices by implementing a pii-audit to prevent sensitive customer data from being included in published repositories and a tools-audit to ensure high-quality, safe descriptions for agent-facing tools.

printing-press-polish