The Agent Skills Directory

[SAFE]: No security issues detected. The skill outlines a standard human-AI collaboration workflow for project management and software development. It does not contain any code, network requests, or attempts to access sensitive system information.
[PROMPT_INJECTION]: The skill processes user-provided requirements and goals to generate tasks and code. Ingestion points: User input and TODO.md (SKILL.md). Boundary markers: Absent, but mitigated by the mandatory human-in-the-loop workflow. Capability inventory: File modification, file creation, and dependency installation (SKILL.md). Sanitization: Absent. The requirement in Step 4 for Gemini to wait for user confirmation after every atomic operation provides a strong security control.

doc-todo-log-loop