The Agent Skills Directory

[SAFE]: Analysis of the resolution logic shows standard developer tool behavior with no malicious intent detected.
[COMMAND_EXECUTION]: Uses grep and glob for codebase indexing; these operations are restricted to searching local files and do not involve remote code execution.
[PROMPT_INJECTION]: The skill processes user-provided routes and commands (Ingestion point: SKILL.md) which are used in search patterns via grep (Capability inventory: grep, read, glob). No explicit boundary markers or sanitization logic is described, creating a surface for indirect prompt injection. However, given the limited capability set (read-only search) and the primary purpose of developer navigation, this is assessed as a low-risk surface.

resolve-entry-point