The Agent Skills Directory

[SAFE]: No security issues or malicious patterns were identified in the skill instructions or the associated validation script.
[COMMAND_EXECUTION]: The skill includes a Python script (scripts/validate.py) intended to be run by the user or agent. A thorough audit of this script confirms it uses only standard library modules to perform static analysis of project files. It does not execute arbitrary code or interact with the system beyond reading specific configuration files.
[DATA_EXFILTRATION]: The analysis confirms that the script lacks any network capabilities. There are no imports or calls related to HTTP requests or socket communication, ensuring that project data remains local.
[PROMPT_INJECTION]: The SKILL.md file contains clear, technical instructions focused on CSS validation. It does not attempt to manipulate the agent's underlying instructions or bypass safety filters.
[CREDENTIALS_UNSAFE]: No hardcoded credentials or sensitive file access (such as .ssh or .aws) were found. The script specifically targets project-level web development configuration files.

tailwind-validator