using-git-worktrees

This skill is functionally coherent: directory selection, safety verification via git check-ignore, creating a worktree, installing dependencies, and running tests match the stated purpose. The primary security concerns are supply-chain and operational: automatic invocation of package managers (network download + potential script execution) and an instruction to automatically modify and commit .gitignore in the repository. Those behaviors are not inherently malicious but are impactful and widen the attack surface; they require explicit user consent, clear warnings, and optional safeguards (e.g., require confirmation before committing, support running installs in a sandbox, verify lockfiles/checksums). No indicators of direct credential harvesting, exfiltration, obfuscated code, or use of untrusted download URLs are present in the document. Overall, treat this skill as medium risk due to download-and-execute and autonomous repo-modifying actions; require user confirmation and hardened safeguards before allowing an agent to perform these steps autonomously.