The Agent Skills Directory

[COMMAND_EXECUTION]: Runs shell commands including git, pnpm, and gh to perform repository operations and execute build scripts.
[PROMPT_INJECTION]: Susceptible to indirect prompt injection where malicious content in git diffs or branch names could influence agent behavior. Ingestion points: Reads branch names and git diff output (SKILL.md). Boundary markers: Lacks specific delimiters or warnings to ignore instructions in ingested data. Capability inventory: Can execute shell commands (pnpm) and interact with remote repositories (git, gh). Sanitization: Does not escape or validate repository data before using it to generate commit messages or PR bodies.

github-commit-push