The Agent Skills Directory

[SAFE]: No security issues were identified during the analysis. The skill provides a secure environment for generating and validating static web artifacts.\n- [COMMAND_EXECUTION]: The bash scripts init-artifact.sh and bundle-artifact.sh were analyzed for command injection vulnerabilities. The use of proper variable quoting (e.g., "$PROJECT_NAME") and quoted heredoc identifiers (e.g., 'HTMLEOF') ensures that user-provided inputs cannot be executed as shell commands.\n- [EXTERNAL_DOWNLOADS]: The skill is designed to be fully self-contained with no external dependencies. There are no instructions or commands that perform network requests or download third-party packages.\n- [DATA_EXFILTRATION]: No patterns associated with data exfiltration or access to sensitive local files (like SSH keys or environment variables) were found. The skill's functionality is limited to managing local project files for HTML generation.

static-web-artifacts-builder