The Agent Skills Directory

[SAFE]: Secret management adheres to security best practices by utilizing platform-native secrets storage mechanisms (Vercel Environment Variables, Fly.io Secrets, and Google Cloud Run Secret Manager) rather than hardcoding credentials.- [SAFE]: External network communications are limited to well-known service providers, specifically official Webflow API endpoints.- [SAFE]: The included webhook handling code implements HMAC signature verification using SHA-256, which is a robust method for validating request authenticity.- [SAFE]: Tool permissions requested in the frontmatter are strictly scoped to the CLI tools necessary for deployment (Vercel, Fly.io, and gcloud), minimizing the skill's operational footprint.- [SAFE]: No patterns of obfuscation, persistence, or privilege escalation were identified in the skill's instructions or source code snippets.

webflow-deploy-integration