The Agent Skills Directory

[COMMAND_EXECUTION]: The skill executes Git CLI commands and filesystem operations via a local bash script. It validates all user-provided inputs, such as worktree names and base references, using 'git check-ref-format' and string-based checks (e.g., rejecting names containing '..' or starting with '-') to prevent command injection and directory traversal.\n- [DATA_EXFILTRATION]: The skill accesses sensitive '.env' files in the repository root to facilitate environment synchronization across worktrees. This process is strictly local and includes guardrails to ignore symbolic links and skip existing files, mitigating risk of accidental exposure or unauthorized overwrites.\n- [PROMPT_INJECTION]: 1. Ingestion points: Worktree names and base refs provided as arguments to the create, switch, and copy-env commands (SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: 'git worktree' management, directory creation, and local file copying (scripts/worktree.sh). 4. Sanitization: Significant validation is present; the script uses Git's native reference checking to ensure inputs conform to safe branch naming conventions before use in shell commands.

flow-next-opencode-worktree-kit