The Agent Skills Directory

[COMMAND_EXECUTION]: The skill uses local bash scripts (scripts/tfy-api.sh and scripts/tfy-version.sh) to perform authenticated API requests and system checks. The scripts include security validations to ensure that only supported HTTP methods are used and that API paths do not contain traversal patterns.\n- [EXTERNAL_DOWNLOADS]: The skill references the official truefoundry package from PyPI for CLI functionality and utilizes various container images for model serving (vLLM, TGI, NVIDIA NIM) from official vendor registries such as AWS ECR and GHCR. These downloads are directed to well-known and trusted vendor sources.\n- [SAFE]: No malicious behavior, such as credential exfiltration, obfuscation, or persistence, was detected. The skill follows security best practices by recommending the use of secret references (tfy-secret://) for sensitive configuration and warning the agent against ingesting instructions from untrusted third-party release pages.

truefoundry-workspaces