The Agent Skills Directory

[COMMAND_EXECUTION]: The skill orchestrates local project setup by executing standard system commands, including mkdir for directory creation and git for version control management. It also conditionally invokes br (Beads), a project state initialization tool, when detected in the runtime environment. These commands are used for their intended administrative purposes and rely on internal or sanitized identifiers.
[PROMPT_INJECTION]: The skill features an indirect prompt injection surface as it interpolates user-provided requirements and interview responses into implementation plans that could guide future autonomous agent actions. This is effectively mitigated through human-in-the-loop security gates (Steps 8 and 9), which require explicit user review and approval of the generated specification and plan before they are finalized or committed. Additionally, the skill applies structural formatting (snake_case and date-stamping) to user-derived track IDs to prevent path injection vulnerabilities.

maestro-new-track