An AI agent without skills is like a smartphone without apps. It can do basic things --- answer questions, generate text, write some code. But it cannot do specific things reliably. It cannot review your code the way your team does it. It cannot query your specific database schema. It cannot follow your company's deployment checklist.
Skills change that. A skill is a reusable instruction set that gives an agent a specific capability. Install a code review skill, and your agent reviews code the way a senior engineer would. Install a database migration skill, and it writes migrations that follow your team's safety patterns.
The ecosystem forming around this concept is moving fast. npm took a decade to reach 350,000 packages. The AI agent skills ecosystem did it in roughly two months.
Key Takeaways
- A skill is a reusable, portable instruction set (typically a SKILL.md file) that gives an AI agent a specific capability
- The SKILL.md standard is supported by 16+ AI agents including Claude Code, Codex, Cursor, Copilot, Gemini CLI, and more
- 351,000+ skills have been indexed across the ecosystem in the first months of the standard's existence
- Skills solve three problems: reusability (write once, use everywhere), portability (works across agents), and trust (verified, safety-scanned)
- 36.82% of skills in one audit had security flaws --- safety scanning and verification are essential, not optional
Short Answer
What is an AI agent skill? A folder containing a SKILL.md file (and optionally scripts, templates, and reference files) that teaches an AI agent how to perform a specific task. The agent reads the skill's instructions and follows them when the task is relevant. Skills are portable across different AI tools and can be shared, versioned, and verified like npm packages.
The Analogy
Before skills, every time you wanted an AI agent to do something specific --- review code your way, follow your team's conventions, deploy using your checklist --- you had to type the instructions from scratch. Every session. Every agent.
Skills are the solution to that repetition. They package instructions once and make them reusable:
| Concept | Software World | AI Agent World |
|---|---|---|
| Base capability | A Node.js runtime | An LLM (Claude, GPT, Gemini) |
| Specific capability | An npm package (e.g., express) | A skill (e.g., code-review) |
| Where you find them | npm registry | Skills registries and marketplaces |
| How you install them | npm install express |
npx skills add code-review |
| What they contain | Code + manifest (package.json) | Instructions + manifest (SKILL.md) |
The parallel is direct. Without packages, every Node developer rewrites HTTP handling from scratch. Without skills, every AI user rewrites their review checklist from scratch.
What a Skill Looks Like
A skill is a folder with a SKILL.md file. The file has YAML frontmatter (metadata) and a markdown body (instructions):
---
name: api-design-review
description: >
Review REST API design for conventions, security headers, rate limiting,
versioning, and input validation. Use when reviewing API route definitions
or controller files.
license: MIT
metadata:
author: engineering-team
version: 1.0.0
---
# API Design Review
When asked to review an API endpoint, check the following:
## Security
- Authentication required on all non-public endpoints
- Rate limiting configured
- Input validation on all parameters
- No sensitive data in URL parameters
## Conventions
- RESTful resource naming (plural nouns)
- Consistent error response format
- Proper HTTP status codes
- API versioning in URL or header
## Output Format
Provide findings grouped by severity: Critical, Warning, Info.
The agent reads this file, understands when it's relevant (API review), and follows the instructions when the task matches. The description field is critical --- it tells the agent when to activate the skill.
The SKILL.md specification was published by Anthropic on December 18, 2025, as an open standard under Apache 2.0 (code) and CC-BY-4.0 (docs). Within days, Microsoft, OpenAI, and others adopted it. Source: agentskills.io/specification
Types of Skills
Skills come in several forms, depending on what capability they provide:
Instruction Skills
The most common type. Step-by-step procedures in markdown that tell an agent how to approach a task. Examples: code review checklists, deployment procedures, content writing guidelines, debugging workflows.
Tool Skills (MCP Servers)
Skills that give agents the ability to interact with external systems --- databases, APIs, file systems, browsers. These are packaged as MCP servers and installed as tools the agent can call.
Workflow Skills
Multi-step orchestrations that chain several capabilities together. Example: "deploy to staging" → "run integration tests" → "if tests pass, deploy to production" → "notify Slack."
Format Adapters
Skills packaged for specific AI tools. The same capability might be distributed as a .md file for Claude Code, a .mdc file for Cursor, or a custom GPT configuration. Format conversion between these is one of the problems skills marketplaces solve.
The SKILL.md Standard
In October 2025, Anthropic launched Agent Skills internally for Claude Code. By December, they published the SKILL.md specification as an open standard. The adoption was rapid:
- 16+ AI agents support SKILL.md: Claude Code, Codex, Cursor, Copilot (via VS Code), Gemini CLI, Amp, Goose, OpenCode, Kiro, Windsurf, Trae, and more
- Microsoft integrated SKILL.md support into VS Code and GitHub Copilot within days of publication
- OpenAI adopted the identical format for Codex CLI and ChatGPT
The standard defines:
- name --- unique identifier (lowercase, hyphens, 1-64 characters)
- description --- what the skill does AND when to use it (max 1024 characters). This is the most important field --- it determines when the agent activates the skill.
- license --- optional but recommended
- metadata --- author, version, and any custom key-value pairs
- allowed-tools --- optional pre-approved tool list for security
- Body --- markdown instructions, recommended under 5,000 tokens
The description field is your activation trigger. "Review REST API design" is good. "Use when reviewing API route definitions, controller files, or when the user asks 'review my API'" is better. Tell the agent both what the skill does and when to use it.
How Skills Are Distributed
The distribution ecosystem has multiple channels, just like software packages:
| Channel | How It Works | Example |
|---|---|---|
| CLI install | npx skills add <name> |
Vercel's skills.sh --- supports 18+ agents |
| Skills marketplaces | Browse, search, safety-scanned, trust tiers | OpenBooklet, SkillsMP (351K+ skills) |
| GitHub repos | Publish SKILL.md files, get auto-indexed | github.com/anthropics/skills |
| npm packages | Bundle skills inside npm packages | @tech-leads-club/agent-skills |
| Direct URLs | Serve raw SKILL.md over HTTP | Any static hosting |
| Built into IDEs | Local .agents/skills/ directories |
VS Code, Cursor native scanning |
Notable publishers: Vercel, Prisma, Supabase, Stripe, Remotion, Coinbase, and Microsoft have all shipped official agent skills.
Why Skills Matter
Reusability
Write a code review skill once. Use it across Claude Code, Cursor, Copilot, and every other supported agent. No rewriting, no format translation. One skill, every agent.
Portability
The SKILL.md standard works across 16+ agents. Your skills are not locked to one vendor. If you switch from Claude Code to Cursor tomorrow, your skills come with you.
Trust and Safety
This is the dimension most beginners overlook, and it matters enormously.
Snyk's "ToxicSkills" study (February 2026) audited 3,984 skills and found:
- 36.82% had at least one security flaw
- 13.4% contained critical-level security issues
- 76 skills contained confirmed malicious payloads hidden in their markdown instructions
Issues included prompt injection, hardcoded API keys, and data exfiltration patterns. A skill that looks helpful on the surface can contain hidden instructions that cause your agent to leak data or execute unintended actions.
This is why verified registries with safety scanning, publisher trust tiers, and content hashing matter. Installing an unverified skill is like running an unverified npm package --- technically possible, but risky.
Not all skills are safe. Before installing any skill from an unknown source, check the publisher's reputation, read the SKILL.md content, and prefer registries that provide safety scanning and verification.
The Ecosystem
The skills ecosystem is forming fast, with different players serving different roles:
| Role | Who | What They Do |
|---|---|---|
| The standard | agentskills.io (Anthropic) | Defines the SKILL.md format |
| The CLI | skills.sh (Vercel) | npx skills add --- installs skills for any agent |
| Discovery | SkillsMP, OpenBooklet | Search, browse, trending, categories |
| Trust layer | OpenBooklet | Safety scanning, publisher verification, trust tiers |
| MCP registries | Smithery, MCP Registry | Tool-specific skills (MCP servers) |
| Reference implementations | Anthropic, OpenAI | Official skill libraries |
The landscape is still forming. But the trajectory is clear: skills are becoming the standard unit of AI agent capability, just as packages became the standard unit of software capability.
Getting Started
Installing Your First Skill
The simplest path:
npx skills add next-js-performance
This installs Vercel's Next.js performance skill into your project. The next time your AI agent works on Next.js code, it follows Vercel's optimization patterns automatically.
Browsing Available Skills
Visit a skills marketplace to search by category, language, or use case. Filter by trust tier to find verified publishers. Sort by pull count to see what the community is actually using.
Creating Your Own Skill
- Create a folder named after your skill:
my-skill/ - Add a
SKILL.mdfile with frontmatter and instructions - Publish to GitHub, a registry, or share the URL directly
The barrier to entry is deliberately low. If you can write markdown, you can create a skill.
FAQ
How is a skill different from a system prompt?
A system prompt is instructions you type into a conversation. A skill is packaged, portable, versioned, and reusable across sessions and agents. Think of it as the difference between typing a command and installing a program.
Do I need to know how to code to use skills?
No. Skills are markdown files with instructions. Installing them is a single command or a button click in a marketplace. Using them requires no technical knowledge beyond knowing what task you want the agent to perform.
Can skills be dangerous?
Yes. Snyk found that 36.82% of skills in one audit had security flaws, and 76 contained confirmed malicious payloads. Use verified sources, check publisher reputation, and prefer registries with safety scanning.
How many agents support SKILL.md?
16+ as of March 2026: Claude Code, Codex, Cursor, GitHub Copilot (VS Code), Gemini CLI, Amp, Goose, OpenCode, Kiro, Windsurf, Trae, and others. The list is growing.
What's the difference between a skill and an MCP server?
A skill is instructions the agent reads and follows. An MCP server is a tool the agent can call to interact with external systems. They're complementary --- a skill might include instructions for how to use specific MCP servers effectively.
Key Takeaways
- Skills are reusable instruction sets that give AI agents specific capabilities, like npm packages give applications specific functionality
- The SKILL.md standard is supported by 16+ agents and backed by Anthropic, Microsoft, and OpenAI
- 351,000+ skills have been indexed in the first months of the ecosystem --- growth is accelerating
- Safety is not optional --- 36.82% of skills in one audit had security flaws. Use verified registries.
- The barrier to entry is low --- if you can write markdown, you can create and share a skill
Further reading: What Are AI Agent Skills? | 10 AI Agent Skills Every Developer Should Install