The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill instructs the user to install several Node.js packages. These include official vendor resources (@solvapay/server, @solvapay/next, etc.) and a well-known service library (@supabase/supabase-js). These are standard dependencies for the described functionality.
[INDIRECT_PROMPT_INJECTION]: The skill utilizes external documentation sources from docs.solvapay.com via an MCP server or text file. This represents an ingestion point for untrusted data that could influence the agent's code generation.
Ingestion points: SKILL.md references https://docs.solvapay.com/mcp and https://docs.solvapay.com/llms.txt for implementation details.
Boundary markers: No specific boundary markers are defined for the documentation content.
Capability inventory: The skill is capable of generating server-side API routes and client-side redirect logic.
Sanitization: Not applicable as the data is used for documentation lookup during development tasks.
[CREDENTIALS_UNSAFE]: The skill includes placeholders for configuration keys such as SOLVAPAY_SECRET_KEY and NEXT_PUBLIC_SUPABASE_URL. It explicitly mandates that secret keys must never be exposed to the client, which is a key security guardrail.

integrate-website-checkout