The Agent Skills Directory

[COMMAND_EXECUTION]: The script scripts/run-tests.sh is vulnerable to command injection. It takes the first command-line argument and interpolates it into a Python command executed via python3 -c without escaping, allowing for arbitrary code execution if a crafted argument is provided.
[COMMAND_EXECUTION]: The testing script processes markdown files from other skills by extracting code blocks and writing them to temporary files. The lack of content validation or source verification creates a surface for injection attacks if the local repository contains malicious skill definitions.

skill-tester-ci