The Agent Skills Directory

[COMMAND_EXECUTION]: The preamble executes numerous local binaries found in ~/.claude/skills/gstack/bin/. It specifically uses eval and source to execute the output of scripts like gstack-slug and gstack-repo-mode, which is a high-risk pattern for dynamic configuration.
[REMOTE_CODE_EXECUTION]: The skill's primary purpose is to synthesize TypeScript code (script.ts and script.test.ts) from previous conversation history. It then executes this generated code using bun test. This represents dynamic code generation and execution based on potentially untrusted historical input (scraped website data).
[DATA_EXFILTRATION]: The skill implements a telemetry system that logs skill usage, durations, and repository names to ~/.gstack/analytics/. Additionally, the 'GBrain Sync' feature is designed to publish session memory to a private GitHub repository. Although these features are gated behind an AskUserQuestion prompt, they represent the transmission of project context and session history to external locations.
[COMMAND_EXECUTION]: The skill performs git operations, including git add and git commit, to modify the project's CLAUDE.md file to inject 'skill routing' rules.
[SAFE]: References to the external domain garryslist.org are treated as vendor-controlled resources belonging to the skill author.

skillify