The Agent Skills Directory

COMMAND_EXECUTION (SAFE): The skill is architected to facilitate the use of the codex CLI tool. It provides Python wrappers and documentation for executing shell-based coding tasks (e.g., codex exec). This functionality is the primary intended purpose of the skill and is implemented through transparent command-line patterns.
EXTERNAL_DOWNLOADS (SAFE): The skill identifies PyYAML as a dependency in its documentation and scripts. This is a standard, reputable library for parsing YAML frontmatter. No suspicious or unversioned remote script downloads (e.g., curl | bash) were detected.
INDIRECT_PROMPT_INJECTION (LOW): The bridge processes project metadata and instructions from CLAUDE.md to generate documentation for other tools. Ingestion points: CLAUDE.md and project file structure. Boundary markers: Not explicitly enforced in the generated markdown. Capability inventory: Shell command execution via the codex CLI. Sanitization: No explicit sanitization of input text before propagation to AGENTS.md. While this establishes a potential surface for instruction propagation, it is characteristic of documentation generators and is categorized as a low-risk concern.
PRIVILEGE_ESCALATION (SAFE): The included packaging script (package.sh) uses chmod +x to make the main Python script executable. This is standard practice for local development tools and does not constitute a security bypass.

codex-cli-bridge