The Agent Skills Directory

[COMMAND_EXECUTION] (SAFE): The skill contains numerous examples of shell commands (e.g., claude mcp list, claude mcp add). These are provided as instructional documentation for the user to manually execute in their terminal and do not represent hidden or automated execution by the agent.
[EXTERNAL_DOWNLOADS] (SAFE): Documentation includes examples of using npx -y to install MCP server packages. While this involves downloading code, it is the standard and intended method for the described tool's functionality.
[CREDENTIALS_UNSAFE] (SAFE): The skill demonstrates how to use headers and environment variables for authentication. It correctly uses non-sensitive placeholders such as YOUR_TOKEN, YOUR_KEY, and secret123 in its examples, which is consistent with security best practices for documentation.
[DATA_EXPOSURE] (SAFE): The skill mentions configuration file paths like ~/.claude/settings.json and ~/.mcp-auth/. These references are educational, explaining where the tool stores its own configuration, rather than attempting to exfiltrate sensitive user data.

mcp-server-manager