The Agent Skills Directory

[DYNAMIC_EXECUTION]: The skill uses string interpolation to build a shell command (git reset --hard "$TARGET_BRANCH") using the ARGUMENTS variable provided by the user. This approach is susceptible to command injection, as shell metacharacters such as backticks or $() can be used to execute arbitrary code within the shell context.
[INDIRECT_PROMPT_INJECTION]: The skill exposes an attack surface for indirect prompt injection by processing untrusted user input that influences command execution.
Ingestion points: ARGUMENTS parameter in SKILL.md.
Boundary markers: None.
Capability inventory: Shell command execution via Git CLI.
Sanitization: No input validation or character filtering is implemented.

git-worktree-clean