The Agent Skills Directory

[COMMAND_EXECUTION]: The skill uses the Bash tool to perform complex repository and build management tasks.
Uses git for branch creation, committing, and pushing code.
Uses gh (GitHub CLI) for authentication, forking, and PR management.
Uses go build and go run for build verification and vulnerability scanning.
Implements automated cleanup of managed clones using rm -rf with specific safeguards to ensure only intended directories are removed.
[EXTERNAL_DOWNLOADS]: The skill fetches and executes code from external sources.
Recommends installing the printing-press binary from the vendor's GitHub repository (github.com/mvanhorn/cli-printing-press).
Executes govulncheck directly from the official Go repository (golang.org/x/vuln).
Runs a local Go script (./tools/generate-skills/main.go) within the managed library clone to maintain repository consistency.
These operations are consistent with the skill's purpose and utilize vendor-owned or official technology repositories.
[SAFE]: The skill includes robust security and privacy protections.
Implements a mandatory secret scan using printing-press publish package to detect live-looking vendor tokens before any code is committed or pushed.
Supports additional security checks via gitleaks or trufflehog if available on the system.
Includes a mandatory PII (Personally Identifiable Information) scrubbing step to prevent accidental leakage of sensitive data (like emails or organization names) to the public repository.
Scopes vulnerability scans (govulncheck) specifically to the module being published to ensure a focused and actionable security report.

printing-press-publish