The Agent Skills Directory

Interaction with Untrusted Data: The skill is designed to handle feedback from external reviewers, which represents an ingestion point for potentially untrusted data.
Ingestion points: GitHub pull request comments and feedback from reviewers.
Boundary markers: The skill establishes logical boundaries by requiring the agent to restate requirements and verify them against the codebase reality before implementation.
Capability inventory: The instructions involve searching the codebase (using grep) and interacting with the GitHub API (gh api) to post replies.
Sanitization: While no automated sanitization is described, the process mandates human-in-the-loop verification for complex or suspicious suggestions, which acts as a robust control against indirect prompt injection.
Command Execution Surface: The skill mentions the use of command-line tools such as grep for codebase analysis and the gh api for managing GitHub thread replies. These tools are used within their standard development context and do not involve executing arbitrary or untrusted code strings.

receiving-code-review