The Agent Skills Directory

[COMMAND_EXECUTION] (LOW): The skill uses shell commands like ls and grep to scan the local project files. These commands are strictly scoped to finding design tokens and code violations in directories like src/ and styles/ and do not exhibit signs of arbitrary command injection.
[EXTERNAL_DOWNLOADS] (LOW): The instructions suggest installing stylelint and stylelint-declaration-strict-value via npm. While these are external dependencies, they are standard, widely-used linting tools in the web development ecosystem.

validating-design-tokens