The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes shell commands to run security scanners on local files. Evidence: Execution of semgrep scan and coderabbit review in SKILL.md. Context: These are standard operations for the skill's primary purpose.
[PROMPT_INJECTION]: The skill ingests untrusted code data which could potentially contain malicious instructions. Ingestion points: The agent reads code changes via git diff as described in SKILL.md. Boundary markers: None present to distinguish between code and potential embedded instructions. Capability inventory: The skill performs shell command execution across SKILL.md. Sanitization: No sanitization or validation of the ingested code content is performed.

semgrep-coderabbit