The Agent Skills Directory

[COMMAND_EXECUTION]: The skill instructs the agent to use curl to verify server liveness during Phase 1 and suggests pkill as a recovery mechanism for browser daemon contention. These are standard system operations for environment management in a web-focused developer workflow.
[EXTERNAL_DOWNLOADS]: Orchestrates tasks by invoking other platform skills such as run-agent-browser and extract-saas-design. These are internal dependencies within the agent skill ecosystem.
[PROMPT_INJECTION]: While the skill processes untrusted web content (Category 8), the risk of indirect prompt injection is mitigated by directing subagents to prioritize visual observations and use strict markdown templates for reporting. The process also includes a mandatory Phase 5 approval gate, ensuring the user reviews and confirms all proposed actions derived from audited content.
[DATA_EXFILTRATION]: No unauthorized network operations or exfiltration patterns were detected. Network activity is limited to auditing the specified target server.
[REMOTE_CODE_EXECUTION]: The skill dispatches subagents to perform fixes, but these are governed by a 'Hard constraints' system that restricts their activity to specific source files and the audit directory, preventing arbitrary code execution.

audit-ui-and-save-files