The Agent Skills Directory

Indirect Prompt Injection (LOW): The skill processes data from the clix-mcp-server to generate content for new skill files. This creates a surface where external documentation could influence the generated skill's behavior. (Ingestion: MCP tool outputs; Boundaries: Absent; Capability: File system write; Sanitization: Absent).
Dynamic Execution (LOW): The scripts/validate-skill-scaffold.sh script executes embedded Python or Node.js code to validate the structure of newly created skills. While this is a form of dynamic execution, it is limited to local validation logic and does not execute external input.

clix-skill-creator