The Agent Skills Directory

[COMMAND_EXECUTION]: The script resolve_pr_conflicts.py utilizes subprocess.run with argument lists and shell=False for all git operations. This approach avoids shell expansion and effectively mitigates command injection risks.
[PROMPT_INJECTION]: The skill performs comprehensive validation on PR branch names and target branches using regular expressions to block control characters, shell metacharacters, and git-specific special characters, preventing the execution of unintended commands.
[SAFE]: The tool includes a robust path validation function get_safe_worktree_path that prevents path traversal attacks when creating local git worktrees by verifying that the resolved path remains within the intended base directory.

merge-resolver