The Agent Skills Directory

[SAFE]: The skill provides strict guidelines for the structure of web application bundles and configuration files, minimizing the risk of misconfiguration.
[SAFE]: The 'Path Safety' section includes robust validation rules designed to prevent path traversal and shell injection vulnerabilities by explicitly rejecting characters like '..', backslashes, leading slashes, and glob patterns.
[SAFE]: Configuration rules for 'webapplication.json' enforce strict schema validation, including non-empty objects and specific allowed keys, which reduces the attack surface for schema confusion or indirect prompt injection.
[SAFE]: The 'Never Suggest' section serves as a security-positive instruction set to prevent the AI from generating common invalid or potentially exploitable empty configurations.

configuring-webapp-metadata