The Agent Skills Directory

[PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface because it ingests untrusted data from the internet and uses it to guide subagent behavior. * Ingestion points: The skill retrieves code patterns via grep MCP, library documentation via context7 MCP, and package source code using npx opensrc. * Boundary markers: There are no explicit markers or instructions to isolate the external data from the agent's core implementation logic. * Capability inventory: The skill is capable of writing code to the filesystem and executing shell commands like git commit. * Sanitization: External content is not sanitized or validated before being included in subagent prompts.
[COMMAND_EXECUTION]: Executes standard shell commands for project initialization, including git for repository metadata and mkdir for state management.
[EXTERNAL_DOWNLOADS]: Downloads external resources and utility packages at runtime using npx and MCP tools. These operations target reputable services such as the npm registry and public code repositories.

ah-implement-tasks