The Agent Skills Directory

[EXTERNAL_DOWNLOADS] (MEDIUM): The skill utilizes npx ruv-swarm throughout multiple examples. This command downloads and executes code from the npm registry. The package ruv-swarm is not from a recognized trusted organization, posing a supply chain risk.
[REMOTE_CODE_EXECUTION] (MEDIUM): In Example 3, the skill clones external repositories and runs npm test. This is a classic vector for local code execution, as a compromised or malicious repository can define arbitrary commands in its test scripts.
[COMMAND_EXECUTION] (MEDIUM): The skill performs high-impact operations including git push and gh pr create across multiple repositories. While aligned with the stated purpose, this degree of automated write-access to an entire organization requires strictly scoped credentials and carries a high risk of accidental damage or widespread policy violation.
[DATA_EXPOSURE] (LOW): The skill extracts the contents of package.json from repositories using the GitHub API and decodes it from Base64. While this data is used for legitimate dependency analysis, it exposes information about the internal structure and dependencies of private repositories to the agent environment.

github-multi-repo