The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill facilitates the download of official project templates and libraries for BigCommerce storefront development.
Evidence: References the official bigcommerce/nextjs-commerce repository on GitHub and create-catalyst-storefront on npm for initializing projects.
[COMMAND_EXECUTION]: The workflows include standard shell commands for managing local development environments and tunnel services.
Evidence: Provides instructions for using npm install, npx, and ngrok within the workflows/build-app.md and workflows/build-headless-storefront.md files.
[PROMPT_INJECTION]: The skill documents procedures for ingesting data from external API endpoints, which creates an inherent surface for indirect prompt injection if source data is compromised.
Ingestion points: Data is retrieved from BigCommerce Catalog, Customers, and Orders APIs across multiple workflow files.
Boundary markers: The provided code snippets do not include explicit delimiters to isolate untrusted data during interpolation.
Capability inventory: The skill guides the creation of applications with network access (BigCommerce API) and local file/database storage capabilities.
Sanitization: While the skill emphasizes secure coding (e.g., using environment variables), the UI snippets leave data sanitization as a responsibility for the implementer.

bigcommerce-api