The Agent Skills Directory

[Prompt Injection] (MEDIUM): Potential for Indirect Prompt Injection (Category 8). The script github_api.py fetches untrusted repository descriptions and metadata from the GitHub API. There are no boundary markers or sanitization logic present to prevent malicious instructions within these external fields from influencing the agent's output or downstream actions. Capability tier is MEDIUM due to the combined ingestion of external data and exfiltration/report generation capability.
[External Downloads] (MEDIUM): The documentation in SKILL.md references several essential scripts (analyze_repository.py, generate_reports.py, visualize_data.py) that are not included in the provided file set. This obfuscates the core logic of the skill, making it impossible to confirm the absence of dangerous side effects such as insecure file operations or command execution during the analysis or report generation phases.

github-stars-analyzer