The Agent Skills Directory

[COMMAND_EXECUTION] (MEDIUM): The skill documentation instructs the agent to run 'bash scripts/init-artifact.sh' and 'bash scripts/bundle-artifact.sh'. Because these script files are not included in the provided content, their behavior cannot be verified, posing a risk of arbitrary command execution.- [EXTERNAL_DOWNLOADS] (MEDIUM): The process involves automated installation of Node.js packages including 'parcel', '@parcel/config-default', 'parcel-resolver-tspaths', and 'html-inline'. Reliance on runtime package installation without explicit version pinning or integrity checks in the documentation introduces supply chain risks.- [PROMPT_INJECTION] (LOW): This skill exhibits a surface for indirect prompt injection. 1. Ingestion points: User instructions for generating React artifacts. 2. Boundary markers: None present to delimit user instructions from system logic. 3. Capability inventory: Execution of bash scripts and potential package installations. 4. Sanitization: No sanitization or validation of user-provided content before it is processed into code.

web-artifacts-builder