The Agent Skills Directory

[COMMAND_EXECUTION]: The skill uses a variety of git CLI commands, including git diff, git rev-parse, git push, and git clone. These operations are essential to its primary purpose of tracking codebase changes, committing documentation updates, and syncing with remote documentation repositories.
[EXTERNAL_DOWNLOADS]: When configured by the user in documentation/config.json, the skill clones a remote Docusaurus repository to a temporary local directory (.docusaurus-sync) to perform documentation synchronization. This behavior is transparently documented and follows user-provided parameters.
[DATA_EXPOSURE_AND_EXFILTRATION]: While the skill scans the entire codebase and has the capability to push to remote git repositories, this is limited to the documentation/ folder and the configured Docusaurus repo. No evidence was found of attempts to access sensitive system files or credentials outside of the project scope.
[INDIRECT_PROMPT_INJECTION]: The skill processes untrusted codebase data (source code and comments) to populate documentation files and CLAUDE.md. This represents a surface for indirect prompt injection where malicious instructions in code comments could influence the agent's future behavior via CLAUDE.md. However, this is a known risk factor for documentation agents and is handled here through structured templating.

ws-codebase-documenter