The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill references and provide examples for the 'YahnisElsts/plugin-update-checker' library to handle plugin updates. This is a well-known community tool and is explicitly categorized as a trusted repository.
[COMMAND_EXECUTION]: A scaffolding script (scripts/scaffold-plugin.sh) is provided to automate the creation of new plugins from the included templates. It performs standard local operations such as copying files to the user's plugin directory and replacing placeholder strings using 'sed'.
[SAFE]: The skill acts as a security-focused educational resource. It provides clear guidance on using 'wp_nonce_field' for CSRF protection, 'sanitize_text_field' for input validation, 'esc_html' for output escaping, and '$wpdb->prepare()' to prevent SQL injection. No signs of obfuscation, persistence mechanisms, or unauthorized data exfiltration were found.

wordpress-plugin-core