The Agent Skills Directory

[COMMAND_EXECUTION]: The install_all_plugins.py script automates the deployment of multiple plugins by executing the bridge_installer.py script via subprocess.run. This is a standard architectural pattern for batch operations within the local environment and does not involve executing arbitrary shell commands or untrusted input.
[EXTERNAL_DOWNLOADS]: The skill specifies a dependency on the yaml Python package via pip in its metadata. No other external network requests, remote script executions, or unauthorized downloads were found.
[PROMPT_INJECTION]: The skill serves as a bridge for external plugin data, which creates a surface for indirect prompt injection if the source plugins are compromised.
Ingestion points: Plugin content is read from the plugins/ directory and processed in bridge_installer.py.
Boundary markers: The transformation logic does not implement boundary markers or instructions to ignore embedded commands within the bridged content.
Capability inventory: The skill possesses capabilities for file system modification (shutil.copytree, Path.write_text) and local script execution via subprocess.run.
Sanitization: The script performs functional transformations like actor flag swapping but does not validate or sanitize the instructional content of the plugins being processed.

bridge-plugin