The Agent Skills Directory

[REMOTE_CODE_EXECUTION]: The skill uses npx -y to dynamically download and run the @nacos-group/cli package from the NPM registry during registry search and installation operations.
[EXTERNAL_DOWNLOADS]: The instructions suggest installing the skills CLI globally using npm install -g skills, which involves fetching and executing code from the public NPM registry.
[COMMAND_EXECUTION]: The hiclaw-find-skill.sh script executes multiple shell commands and CLI tools, such as npx and the skills package manager, to provide discovery functionality.
[PROMPT_INJECTION]: The skill fetches and displays metadata from external registries, which presents an indirect prompt injection surface.
Ingestion points: Search results (skill names and descriptions) from registry APIs via skills find or nacos-cli skill-list.
Boundary markers: Absent; registry output is presented directly to the agent/user without delimiters.
Capability inventory: Shell command execution, NPM package installation, and agent skill activation.
Sanitization: No sanitization or filtering of external registry metadata was identified.
[CREDENTIALS_UNSAFE]: The script extracts and handles credentials (username, password, tokens) from registry URLs and environment variables for Nacos authentication. The default registry configuration uses an unencrypted nacos:// protocol over port 80, which could expose these credentials in transit.

find-skills