Delegate coding tasks to a separate autonomous agent with AST validation, security scanning, and automatic retry. Supports 4 backends (Claude Code, Codex, Op...
Security Analysis
medium confidenceThe skill's requirements and instructions line up with its stated purpose (delegating coding to a separate agent); it needs an Anthropic API key, Python, and the agenter package and will run a subprocess that can read/write inside the provided working directory — review and restrict the cwd before use.
The skill is meant to run a separate coding agent and the packaged files and declared requirements (python3, uv, primary Anthropic credential) are consistent with that purpose. Requesting ANTHROPIC_API_KEY as primaryEnv matches the default backend. The included CLI wrapper calls the agenter SDK as expected.
The SKILL.md and CLI instruct the agent to operate on a user-provided --cwd and (by default) allow writing anywhere inside that cwd. This is coherent for a code-writing tool, but it means the sub-agent will perform file reads/writes and potentially execute commands in that directory. The skill recommends sandboxing and allows --allowed-write-paths to limit writes — users must pick a safe cwd or granular allowed-write-paths.
No opaque downloads are used. The documented installer uses 'uv pip install agenter>=0.1.2' (also referenced in requirements.txt), which installs a public Python package. This is a moderate-risk, expected mechanism for this kind of skill rather than an arbitrary remote download.
Primary credential ANTHROPIC_API_KEY is appropriate for the default backend. The documentation clearly notes that other backends (e.g., codex/OpenAI) require their own keys (OPENAI_API_KEY) if selected. The skill does not demand unrelated secrets or multiple unrelated env vars by default.
The skill is not marked 'always:true' and is user-invocable; it does not request persistent system-wide privileges or modify other skills. It does have the capability to write files within the provided workspace (by design), but it does not declare or require elevated platform privileges.
Guidance
This skill appears to be what it claims: a wrapper that runs an external coding agent (agenter). Before installing/using it: 1) Provide only the API keys you intend to use (ANTHROPIC_API_KEY for default; provide OPENAI_API_KEY only if you choose the codex backend). 2) Always run it with --cwd set to a safe, isolated directory (or set --allowed-write-paths) so the sub-agent cannot modify sensitive files. 3) Use --sandbox unless you explicitly need no-sandbox backends. 4) Be aware the agent will send data to the chosen model provider — don’t include secrets in prompts or workspace files. 5) Review the agenter package provenance (PyPI/project repo) and consider pinning a vetted version before installing. If you need a higher-assurance review, provide the agenter package source or confirm the exact pip package ownership and release URLs.
Latest Release
v0.1.1
Sharper positioning, competitor comparison, updated models to gpt-5.4
Popular Skills
Published by @gabriel-hurtado on ClawHub
