The Agent Skills Directory

Prompt Injection (SAFE): The skill consists of instructional content and does not contain directives to bypass safety filters or extract system prompts.- Data Exposure & Exfiltration (SAFE): No hardcoded credentials or sensitive file paths were detected. The tool definitions are limited to read-only codebase analysis with no network egress capabilities.- Indirect Prompt Injection (LOW): The skill analyzes untrusted data from a user's codebase. Evidence: 1. Ingestion points: Read, Grep, and Glob tools used on project files. 2. Boundary markers: Absent. 3. Capability inventory: Read-only access to files; no shell, network, or write access. 4. Sanitization: Absent. The risk is minimized as the agent only provides design advice based on the data.- Obfuscation (SAFE): No Base64, zero-width characters, or other encoding techniques were found in the provided files.- Remote Code Execution (SAFE): There are no patterns of downloading and executing remote scripts or unverified third-party packages.- Persistence & Privilege Escalation (SAFE): No commands related to system persistence, service installation, or privilege escalation (e.g., sudo, chmod) are present.

Ruby Object Design Expert