The Agent Skills Directory

[COMMAND_EXECUTION] (LOW): The scripts/validate-stack.sh script executes local commands including cdk, jq, grep, and find to validate project structure and synthesized templates. These operations are essential for the skill's functionality and are performed locally without privilege escalation or external communication.
[EXTERNAL_DOWNLOADS] (LOW): The documentation recommends the installation of cdk-nag, a trusted open-source security auditing tool. These recommendations are directed toward official package registries and align with standard industry practices for infrastructure security.
[INDIRECT_PROMPT_INJECTION] (LOW): The skill parses project files such as package.json and requirements.txt to detect the programming language. While this involves processing external data, the logic is limited to checking file existence and string presence, posing no significant risk of command injection or state manipulation.

aws-cdk-development