The Agent Skills Directory

COMMAND_EXECUTION (SAFE): The skill utilizes several Bash-based tools, but specifically restricts them to a set of predefined binaries (node, npm, npx, yarn, pnpm, bun, deno, jest, vitest, eslint, prettier, biome). This restricted scope follows the principle of least privilege, preventing arbitrary command execution while enabling necessary development workflows.\n- EXTERNAL_DOWNLOADS (SAFE): While the skill mentions using package managers like npm and bun to install dependencies (e.g., vitest, eslint), these are standard operations for the intended use case of a JavaScript development specialist. No suspicious or unknown remote scripts are downloaded or executed.\n- INDIRECT_PROMPT_INJECTION (LOW): The skill is designed to process external project files like package.json and .js files. While this creates a surface for indirect prompt injection, there are no specific patterns suggesting the skill is vulnerable to or encouraging the execution of instructions embedded in those files beyond standard code analysis.

moai-lang-javascript