The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes the Bash and Task tools to execute document compilation commands such as typst compile. This is the primary function of the skill to generate PDF and image previews from source files.
[DATA_EXPOSURE]: The workflow performs automated scans of the local project directory for files like *.typ, *.md, and *.pdf to build context and inherit styles from existing documents. While this involves reading local data, the operations are confined to the project scope and necessary for document generation.
[INDIRECT_PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it reads and processes external data (existing project documents) to inform its drafting phase. Malicious instructions embedded in these files could potentially influence the agent's output behavior.
Ingestion points: Project files matching *.pdf, *.md, *.typ (Phase 0: Auto-Discover).
Boundary markers: None explicitly defined for ingested content.
Capability inventory: Bash execution, Write file access, Task management.
Sanitization: No specific sanitization mentioned for data retrieved via Read or Glob tools.

create-document