react-router-loader-performance

The skill consists of three markdown files (SKILL.md, rules/loader-consolidate-queries.md, and rules/loader-defer-slow-secondary.md). All files contain instructional text and code examples written in TypeScript JSX (tsx).

1. Prompt Injection: No patterns indicative of prompt injection (e.g., 'IMPORTANT: Ignore', 'Override your constraints') were found in any of the files or their metadata.
2. Data Exfiltration: There are no commands or code snippets that attempt to read sensitive files (e.g., ~/.aws/credentials, ~/.ssh/id_rsa) or send data to external, untrusted domains via curl, wget, fetch, or similar network utilities. The tsx code examples demonstrate application-level logic and database interactions within a hypothetical application context, not system-level commands executed by the agent.
3. Obfuscation: No obfuscation techniques such as Base64 encoding, zero-width characters, Unicode homoglyphs, or URL/hex/HTML encoding were detected.
4. Unverifiable Dependencies: The skill does not instruct the agent to install any external packages (e.g., npm install, pip install) or download scripts from external sources. The tsx code examples reference standard React/React Router imports and a db object, which are assumed to be part of the user's application environment, not dependencies for the skill itself.
5. Privilege Escalation: No commands like sudo, chmod +x, or attempts to modify system files were found.
6. Persistence Mechanisms: No attempts to establish persistence (e.g., modifying .bashrc, creating cron jobs, or systemd services) were detected.
7. Metadata Poisoning: The name and description fields in SKILL.md and title, impact, tags in the other markdown files are clean and do not contain any malicious instructions.
8. Indirect Prompt Injection: As an informational skill, it does not process external user input, thus the risk of indirect prompt injection is not applicable.
9. Time-Delayed / Conditional Attacks: No conditional logic based on dates, times, or other triggers for delayed malicious behavior was found.

Overall, the skill is purely descriptive and provides guidance. It does not execute any code or perform any actions on the agent's system, making it inherently safe.