Command Guardian

The skill's code, instructions, and requirements are consistent with a preflight safety checker for shell/infrastructure commands; it runs local Python scripts, inspects commands/paths, and does not demand unrelated credentials or external downloads.

This skill appears coherent and implements what it promises, but review the bundled scripts before enabling them in an automated agent. Notes to consider before installing: (1) It executes locally via Python and may call subprocesses (e.g., git) and read filesystem paths — ensure the agent supplies a restrictive --allowed-root and appropriate --cwd so the checker only examines intended workspaces. (2) No external downloads or credentials are required, but you should still inspect scripts (guardlib.py, secret_guard.py, preflight.py) if you need higher assurance. (3) If you do not want automated agents to run preflight checks autonomously, restrict model/skill invocation in your policy; otherwise the skill can be invoked by the agent when it decides to run a risky command. (4) Run the included tests locally to validate behavior in your environment before granting broad trust.