The Agent Skills Directory

[Category 1: Prompt Injection] (SAFE): The skill does not contain instructions aimed at overriding agent behavior, bypassing safety filters, or extracting system prompts.
[Category 2: Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or network operations (curl, wget, etc.) are present.
[Category 4: Unverifiable Dependencies & Remote Code Execution] (SAFE): No package installations or remote script executions are defined in this skill.
[Category 8: Indirect Prompt Injection] (INFO): The skill acts on user queries to route tasks. While it handles untrusted user input, it does not possess write or execute capabilities that could be exploited via injection. The output is limited to internal agent routing decisions.
[Category 10: Dynamic Execution] (SAFE): No runtime compilation, code generation, or unsafe deserialization patterns were detected.

axiom-ios-ai