The Agent Skills Directory

Prompt Injection (LOW): The skill is susceptible to indirect prompt injection (Category 8). It ingests untrusted design documents to generate implementation plans.
Ingestion points: The skill processes user-provided design specifications and codebase context during the plan creation phase.
Boundary markers: No specific delimiters or 'ignore embedded instructions' warnings are implemented to separate user data from the agent's logic.
Capability inventory: The skill writes generated plans to the local file system (docs/plans/) and encourages the use of subagents for task execution.
Sanitization: No evidence of sanitization or validation of the input design content before interpolation into the implementation plan.

Writing Plans