The Agent Skills Directory

[SAFE]: The skill is entirely composed of documentation and reference materials in Markdown format. It does not include any executable scripts, binary files, or external code dependencies.
[SAFE]: Includes explicit security warnings and best practices for developers, such as recommending the use of frappe.db.escape() to mitigate SQL injection risks when using permission query hooks.
[SAFE]: Proactively warns against storing secrets or sensitive API keys in the extend_bootinfo hook, as this data is transmitted to the client-side environment and visible in browser session data.
[SAFE]: Provides guidance on secure fixture configuration, emphasizing the use of module-based filters to prevent accidental data exposure or conflicts during app migration.
[SAFE]: Follows standard Frappe framework conventions and refers users to official documentation for further learning, with no evidence of malicious behavior, prompt injection, or data exfiltration attempts.

frappe-syntax-hooks