grtninja/repo-b-agent-bridge-safety
skill-candidates/repo-b-agent-bridge-safety/SKILL.md
Operate and secure the Continue Agent Bridge in <PRIVATE_REPO_B>. Use when configuring bridge modes, validating /api/agent endpoints, enforcing controlled-write safety gates, or diagnosing bridge availability and permission failures.
$ install --global
skillsauthnpx skillsauth add grtninja/skill-arbiter repo-b-agent-bridge-safetyInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 22, 2026, 8:23 PM66.0s3 files scanned
SKILL.md
- name:
- repo-b-agent-bridge-safety
- description:
- Operate and secure the Continue Agent Bridge in <PRIVATE_REPO_B>. Use when configuring bridge modes, validating /api/agent endpoints, enforcing controlled-write safety gates, or diagnosing bridge availability and permission failures.
REPO_B Shim Agent Bridge Safety
Use this skill for Agent Bridge setup and safety enforcement.
Workflow
- Configure bridge environment variables for session mode.
- Validate capabilities endpoint and a read-only task.
- Keep
read_onlyas default; enablecontrolled_writeonly when required. - Enforce
allow_writeand apply gating rules.
Scope Boundary
Use this skill for /api/agent/* bridge-mode and write-safety controls.
Do not use this skill for:
- MCP adapter or Comfy resource diagnostics lanes.
- Windows-host vs WSL reachability checks.
- General PR preflight/doc lockstep lanes.
Required Environment (PowerShell)
$env:REPO_B_CONTINUE_BRIDGE_ENABLED = "1"
$env:REPO_B_CONTINUE_BRIDGE_URL = "http://127.0.0.1:11420"
$env:REPO_B_CONTINUE_MODE = "read_only"
$env:REPO_B_CONTINUE_ALLOWED_ROOTS = "G:\GitHub\<PRIVATE_REPO_B>"
Optional controlled-write limits:
$env:REPO_B_CONTINUE_WRITE_ALLOWED_ROOTS = "G:\GitHub\<PRIVATE_REPO_B>\repo_b_repo_b_python_shim,G:\GitHub\<PRIVATE_REPO_B>\tests"
$env:REPO_B_CONTINUE_APPLY_ENABLED = "0"
Model-plane note:
- Treat
http://127.0.0.1:9000/v1andhttp://127.0.0.1:2337/v1as authoritative. - Treat
http://127.0.0.1:1234/v1only as a non-authoritative operator surface when debugging connector drift.
API Checks
Invoke-RestMethod http://127.0.0.1:9000/api/agent/capabilities | ConvertTo-Json -Depth 8
$body = @{
task_type = "analyze_files"
prompt = "Summarize required docs changes."
paths = @("README.md", "docs/PROJECT_SCOPE.md", "docs/SCOPE_TRACKER.md")
allow_write = $false
dry_run = $true
} | ConvertTo-Json -Depth 8
Invoke-RestMethod -Method Post -Uri "http://127.0.0.1:9000/api/agent/tasks" -ContentType "application/json" -Body $body
Reference
references/bridge-safety-checklist.md
Loopback
If this lane is unresolved, blocked, or ambiguous:
- Capture current evidence and failure context.
- Route back through
$skill-hubfor chain recalculation. - Resume only after the updated chain returns a deterministic next step.
Related Skills
grtninja/white-hat
tools
VerifiedTrustedCommunity
Run a defender-first security sweep on code, configs, prompts, model/tooling surfaces, or third-party contribution lanes. Use when a request involves safe bug, leak, zero-day-class, exploit, or hack hunting for protection, when contributing to outside repositories and you want a focused security pass, or when touching auth, secrets, permissions, network exposure, prompt/tool boundaries, data flow, or update/build surfaces. This skill is defensive only and must never be used for weaponization or unauthorized access.
2SKILL.mdUpdated Apr 22, 2026
grtninja/vrm-sandbox-startup-acceptance
development
VerifiedTrustedCommunity
Validate and repair VRM Sandbox startup acceptance with shim-first local model authority, frontend/backend bring-up, and avatar-runtime launch proof. Use when launch behavior, chat handoff, voice fallback, or runtime bridge acceptance must be verified end to end.
2SKILL.mdUpdated Apr 22, 2026
grtninja/voice-catalog-runtime-alignment
documentation
VerifiedTrustedCommunity
Align documented voice-command catalogs, endpoint action allowances, and live runtime handlers so operator-visible voice surfaces match what the stack can actually execute. Use when voice command docs, parser matrices, endpoint permissions, or runtime action routing drift apart.
2SKILL.mdUpdated Apr 22, 2026
grtninja/skillhub-trend-radar
development
VerifiedTrustedCommunity
Track SkillHub trend and topic drift, maintain a bounded rewrite watchlist, and surface emerging gaps worth turning into repo-owned skills. Use when the marketplace query set shows new families or when the current shortlist has gone stale.
2SKILL.mdUpdated Apr 22, 2026