The Agent Skills Directory

[Indirect Prompt Injection] (LOW): The skill's primary function is to analyze untrusted source code, creating an attack surface for indirect prompt injection. 1. Ingestion points: Processes external Rust source code using Read, Glob, and Grep tools. 2. Boundary markers: Absent; the skill does not explicitly instruct the agent to distinguish between its own logic and instructions found within reviewed code. 3. Capability inventory: The agent can execute cargo and rustc commands and perform Write/Edit operations on the filesystem. 4. Sanitization: Absent; code content is evaluated directly for feedback.
[External Downloads] (LOW): The skill suggests installing third-party tools like flamegraph and samply via cargo install. While standard for Rust development, this involves downloading and executing external code.
[Command Execution] (SAFE): Tool usage is restricted to the Rust toolchain (cargo, rustc, clippy, rustfmt), which is necessary and appropriate for the skill's stated purpose.

rust-best-practices