The Agent Skills Directory

[SAFE]: The skill acts as a collection of patterns and guidance for automating repository tasks. It contains no malicious instructions, obfuscated code, or unauthorized data access patterns.
[COMMAND_EXECUTION]: The skill examples describe using 'bash' and 'playwright' for standard DevOps operations, such as running test suites, checking for dependency updates via npm/pip, and generating repository health visualizations. These tools are used within a constrained CI/CD context.
[EXTERNAL_DOWNLOADS]: The skill references official security and development policies from the author's own repository (github.com/Hack23) and links to documentation from well-known sources like GitHub's official blog and documentation portals.
[DATA_EXFILTRATION]: Workflow patterns focus on internal repository data processing using the GitHub API for triage and reporting. No mechanisms for sending sensitive data to untrusted third-party domains were identified.
[PROMPT_INJECTION]: The skill defines rules (MUST/MUST NOT) that reinforce security by requiring human oversight and monitoring for AI-generated outputs. Ingestion points: Untrusted data enters the agent context via issue descriptions, pull request bodies, and test failure logs. Boundary markers: The provided templates do not implement specific delimiters for external content. Capability inventory: Workflows utilize the github tool for repository interaction and the bash/playwright tools for analysis. Sanitization: No explicit sanitization logic is provided in the examples, but risk is mitigated by the mandatory human-in-the-loop review policy for all state-changing actions.

continuous-ai-patterns