The Agent Skills Directory

[COMMAND_EXECUTION]: The skill executes local git commands (git checkout) and a provided shell script (scripts/scaffold-phase.sh) to automate the creation of branches and file scaffolding. These actions are within the intended scope of a development tool.
[PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because it processes untrusted user input from the $ARGUMENTS variable and interpolates it directly into file content (roadmap and test shells) and git commands. Ingestion points: User-provided phase number and title in $ARGUMENTS. Boundary markers: None. Capability inventory: Git branch management and file system writes. Sanitization: The helper script performs basic kebab-case conversion for branch names, but the AI-led steps for roadmap and test creation do not have explicit sanitization instructions.

phase-kickoff