The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes the executeBash tool to run diagnostic commands such as grep, ls, and head. These commands are used solely to inspect the local project environment (e.g., checking package.json for dependencies, verifying the presence of iOS/Android directories, and validating the order of imports in entry files). These operations are benign and restricted to the application's source code.
[CREDENTIALS_UNSAFE]: While the skill references sensitive configuration parameters like APP_ID, REGION, and AUTH_KEY, it does so in the context of troubleshooting connectivity issues. It does not contain hardcoded secrets or instructions to expose them. Notably, it includes a security best practice recommendation to switch from authKey to server-minted authToken for production builds.
[EXTERNAL_DOWNLOADS]: The skill mentions npm install for the UI Kit and its peer dependencies. These are standard package management operations for a React Native developer and target legitimate, well-known packages. No unverified or remote scripts are executed.
[SAFE]: The skill's behavior matches its described purpose as a troubleshooting tool. It follows least-privilege principles by using standard inspection tools and provides accurate remediation steps for common integration failures.

cometchat-native-troubleshooting