一键在 Manus 中运行任何 Skill

$pwd:

command-execution-principles

Name: Command Execution Principles
Author: irahardianto

// Apply safe command execution patterns when spawning external processes, shell commands, or system calls from application code. Covers input sanitization, timeout handling, output capture, and error propagation.

在 Manus 中运行

$ git log --oneline --stat

stars:2

forks:0

updated:2026年4月8日 13:13

SKILL.md

readonly

name	command-execution-principles
description	Apply safe command execution patterns when spawning external processes, shell commands, or system calls from application code. Covers input sanitization, timeout handling, output capture, and error propagation.
user-invocable	false

Command Execution Principles

Security

Never execute user input directly:

❌ exec(userInput)
❌ shell("rm " + userFile)
✅ Use argument lists, not shell string concatenation
✅ Validate and sanitize all arguments

Run with minimum permissions:

Never run commands as root/admin without explicit human approval. If elevated permissions are absolutely required, STOP and request authorization.
Use least-privilege service accounts

Portability

Use language standard library:

Avoid shell commands when standard library provides functionality
Example: Use file I/O APIs instead of cat, cp, mv

Test on all target OS:

Windows, Linux, macOS have different commands and behaviors
Use path joining functions (don't concatenate with /)

Error Handling

Check exit codes:

Non-zero exit code = failure
Capture and log stderr
Set timeouts for long-running commands
Handle "command not found" gracefully

Command Execution Checklist

Is user input sanitized/validated before use in commands?
Are arguments passed as lists (not shell string concatenation)?
Are commands running with minimum necessary permissions?
Are exit codes checked and errors handled?
Are timeouts set for long-running commands?
Is stderr captured and logged?

Related Principles

Security Mandate @.claude/rules/security-mandate.md
Security Principles @.claude/rules/security-principles.md

related-skills.json

同仓库

code-review.md

from "irahardianto/claude-superpowers"

Execute a structured code review protocol that inspects code quality against the full rule set. Use when auditing code written by yourself or another agent, during code audit workflows, or when the user asks for a code review. Produces a findings document with severity tags.

2026-04-142

research-methodology.md

from "irahardianto/claude-superpowers"

Structured research protocol for investigating technologies, patterns, and APIs before implementation. Use when exploring unfamiliar technologies, evaluating library options, or documenting technical findings. Covers multi-tool search strategy, research log conventions, and training data fallback honesty protocol.

2026-04-142

accessibility-principles.md

from "irahardianto/claude-superpowers"

Apply WCAG accessibility standards when building UI components, forms, interactive elements, or any user-facing interface. Covers semantic HTML, ARIA attributes, keyboard navigation, color contrast, and screen reader support.

2026-04-082

adr.md

from "irahardianto/claude-superpowers"

Document significant architectural decisions using the ADR (Architecture Decision Record) format. Use during research phases when choosing between approaches, when introducing new dependencies or patterns, or when the user asks to document a technical decision.

2026-04-082

api-design-principles.md

from "irahardianto/claude-superpowers"

Apply REST/HTTP API design conventions when implementing endpoints, handlers, middleware, request validation, or response formatting. Covers resource naming, status codes, error formats, versioning, and pagination.

2026-04-082

ci-cd-gitops-kubernetes.md

from "irahardianto/claude-superpowers"

Apply Kubernetes deployment and GitOps patterns when configuring container orchestration, deployment strategies (rolling, blue-green, canary), ArgoCD/Flux manifests, or Kubernetes secrets management. Supplement to ci-cd-principles.

2026-04-082

package.json

"author": "irahardianto"

"repository": "irahardianto/claude-superpowers"

打开 GitHub 仓库查看创作者相关仓库

$ install --global

$ download --local

在 Manus 中运行

$ useful --forSOC

软件开发工程师计算机与数学类职业15-1252L4

name	command-execution-principles
description	Apply safe command execution patterns when spawning external processes, shell commands, or system calls from application code. Covers input sanitization, timeout handling, output capture, and error propagation.
user-invocable	false

Command Execution Principles

Security

Never execute user input directly:

❌ exec(userInput)
❌ shell("rm " + userFile)
✅ Use argument lists, not shell string concatenation
✅ Validate and sanitize all arguments

Run with minimum permissions:

Never run commands as root/admin without explicit human approval. If elevated permissions are absolutely required, STOP and request authorization.
Use least-privilege service accounts

Portability

Use language standard library:

Avoid shell commands when standard library provides functionality
Example: Use file I/O APIs instead of cat, cp, mv

Test on all target OS:

Windows, Linux, macOS have different commands and behaviors
Use path joining functions (don't concatenate with /)

Error Handling

Check exit codes:

Non-zero exit code = failure
Capture and log stderr
Set timeouts for long-running commands
Handle "command not found" gracefully

Command Execution Checklist

Is user input sanitized/validated before use in commands?
Are arguments passed as lists (not shell string concatenation)?
Are commands running with minimum necessary permissions?
Are exit codes checked and errors handled?
Are timeouts set for long-running commands?
Is stderr captured and logged?

Related Principles

Security Mandate @.claude/rules/security-mandate.md
Security Principles @.claude/rules/security-principles.md

command-execution-principles

Command Execution Principles

Security

Portability

Error Handling

Command Execution Checklist

Related Principles

同仓库更多 Skills

同仓库更多 Skills

Command Execution Principles

Security

Portability

Error Handling

Command Execution Checklist

Related Principles