The Agent Skills Directory

[SAFE]: No malicious patterns or security vulnerabilities were detected in the skill's implementation. The logic is confined to string processing and HTML template rendering.\n- [PROMPT_INJECTION]: The skill processes untrusted HTML content, creating a surface for indirect prompt injection.\n
Ingestion points: run.py accepts HTML strings and template variables through the extract and generate handlers.\n
Boundary markers: Absent. Processed content is not wrapped in markers to distinguish it from instructions.\n
Capability inventory: None. The script only performs string manipulation and does not have access to shell, network, or file writing tools.\n
Sanitization: Partial. The extract function uses regex to remove HTML tags, but no specific escaping is applied to inputs in the generate function.

web-page-editing