miaodi/shell
skills/shell/SKILL.md
Use when writing, debugging, reviewing, or refactoring shell scripts and command lines in bash, zsh, csh, tcsh, POSIX sh, and terminal automation workflows.
tools
Updated Apr 16, 2026
$ install --global
skillsauthnpx skillsauth add miaodi/llm_config shellInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 16, 2026, 12:57 PM25.3s1 file scanned
SKILL.md
- name:
- shell
- description:
- Use when writing, debugging, reviewing, or refactoring shell scripts and command lines in bash, zsh, csh, tcsh, POSIX sh, and terminal automation workflows.
Shell Skill
Purpose
Support shell scripting, command-line automation, and terminal troubleshooting across bash, zsh, csh, tcsh, and POSIX sh.
When To Use
Use for shell scripts, login and startup files, aliases, functions, environment setup, build and deploy scripts, command pipelines, and terminal debugging.
Priorities
- Correct shell targeting - identify whether the script is for bash, zsh, csh/tcsh, or POSIX sh before changing syntax.
- Safety - prevent quoting bugs, glob expansion surprises, destructive file operations, and silent failures.
- Portability - prefer portable constructs when the target shell or platform is mixed.
- Readability - keep scripts structured, explicit, and easy to audit.
- Observability - make failures diagnosable with clear exit handling, logging, and reproducible commands.
Coverage
- Shell language differences: bash, zsh, csh, tcsh, POSIX sh
- Quoting, word splitting, globbing, arrays, conditionals, loops, functions, subshells
- Pipelines and text processing with grep, sed, awk, cut, sort, uniq, tr, xargs, find, tee
- Process control: jobs, signals, traps, background tasks, exit codes, timeouts
- Filesystem and permissions: chmod, chown, umask, symlinks, temp files, atomic updates
- Environment management: PATH, exports, startup files, shell rc files, tool discovery
- Debugging: set -x, set -euo pipefail where appropriate, shell tracing, reproducer minimization
- Reliability: idempotent install scripts, input validation, dependency checks, cleanup handlers
- Performance: avoid useless subshells, inefficient loops over large files, and unnecessary process spawning
- Security: safe variable handling, command injection avoidance, secret leakage prevention, and cautious use of eval
Workflow
- Determine the exact target shell from the shebang, invocation, or surrounding environment. Do not assume bash if the script says zsh or csh.
- Check shell-specific semantics before editing. In particular, csh/tcsh differs materially from Bourne-style shells and often needs a different structure rather than a syntax translation.
- Read the full script and identify risky areas: unquoted expansions, unchecked commands, unsafe temporary files, recursive deletes, and shell-specific syntax traps.
- Prefer simple data flow: clear variable names, small functions, and pipelines that are readable without unnecessary command chaining.
- For bash or POSIX sh, use strict-mode patterns only when they match the script's behavior and error model.
- For zsh, account for option-dependent behavior, array semantics, globbing differences, and interactive-vs-script contexts.
- For csh/tcsh, avoid forcing Bourne-shell idioms into the script. Use native control flow and variable syntax, and call out maintainability risks when relevant.
- Use established command-line tools when they are the simplest correct solution: grep, sed, awk, find, xargs, tar, rsync, curl, jq, and similar utilities.
- Validate with the target shell directly when possible, not only with a different shell.
- Document assumptions about platform, shell version, external tools, and environment variables.
Review Checklist
- Does the shebang match the syntax actually used?
- Are variable expansions quoted correctly for the target shell?
- Are spaces, globs, and empty variables handled safely?
- Are destructive operations guarded and explicit?
- Are temporary files created safely and cleaned up?
- Are exit codes checked where failure matters?
- Are external tool dependencies documented or probed?
- Is the script idempotent if used for setup or deployment?
- Does the script avoid bash-only syntax when portability is required?
- If the script is csh/tcsh, are the semantics correct rather than only superficially similar?
Constraints
- Do not present bash syntax as valid for zsh or csh without checking the differences.
- Do not recommend csh for new automation unless there is a compatibility requirement.
- Do not use eval unless there is a clear need and the input is controlled.
- Do not suppress errors blindly with constructs that hide failures.
- Do not assume GNU tool behavior on every platform when BSD variants may exist.
- Do not replace a clear awk or sed solution with a more complex shell loop unless there is a strong reason.
Output
Provide:
- shell-aware code or command changes targeted to the correct shell
- a brief note on shell-specific assumptions or portability limits
- verification steps using the target shell and relevant tools
- any material risks around safety, portability, or maintainability
Related Skills
miaodi/computational-learning-notes
development
VerifiedTrustedCommunity
Use when creating C++ learning notes or minimal experiments for low-level computational, numerical, CPU/GPU, compiler, and hardware concepts such as false sharing, floating point, registers, caches, SIMD, atomics, numerical stability, and benchmarking pitfalls.
SKILL.mdUpdated Jun 2, 2026
miaodi/latex-project-build
development
VerifiedTrustedCommunity
Use when configuring, diagnosing, or compiling LaTeX projects, especially multi-file reports, theses, books, chapter-based projects, Overleaf exports, latexmk/arara/Makefile workflows, bibliography/index/glossary passes, or projects that require pdflatex, xelatex, lualatex, latex->dvips, biber, or bibtex.
SKILL.mdUpdated May 28, 2026
miaodi/graph-algorithms
development
VerifiedTrustedCommunity
Use when working with graph traversals (BFS, DFS, level-order), minimum spanning trees, strongly connected components, topological sort, graph coloring, bipartite detection, elimination trees, level-set extraction, parallel graph algorithms, task-tree parallelism, sparse graph representations, and exploiting graph structure for parallel sparse computations.
SKILL.mdUpdated May 21, 2026
miaodi/git-workflow
testing
VerifiedTrustedCommunity
Use when planning or executing Git branch workflows, especially merge/rebase across branches, conflict resolution, safe history rewriting, and recovery from mistakes.
SKILL.mdUpdated May 21, 2026