The Agent Skills Directory

[SAFE]: No malicious patterns or security risks were identified. The skill's behavior is consistent with its stated purpose of providing technical documentation and code examples for Chainlink products.
[EXTERNAL_DOWNLOADS]: The skill retrieves documentation from docs.chain.link and github.com/smartcontractkit. These are official sources managed by the skill's author and are used for functional reference rather than executing untrusted remote code.
[COMMAND_EXECUTION]: The skill uses the Bash tool to perform documentation fetches via curl and to execute platform-specific CLI tools (such as solana, aptos, starkli, and tronbox) required for the development lifecycle. These operations are targeted at trusted vendor tools.
[INDIRECT_PROMPT_INJECTION]: The skill ingests data from external documentation URLs. This vulnerability surface is mitigated by restricting fetches to official vendor domains and providing internal safety defaults (reference files) to serve as a floor for instructions if external content is unavailable.

chainlink-data-feeds-skill