The Agent Skills Directory

[PROMPT_INJECTION] (LOW): The skill supports a custom payload that renders HTML in the local Ray app, posing a risk of indirect prompt injection. Ingestion points: External data from user input or web pages (SKILL.md). Boundary markers: No delimiters or ignore instructions are defined. Capability inventory: Local network POST requests to port 23517 (SKILL.md). Sanitization: No sanitization or escaping is mentioned for HTML content.
[COMMAND_EXECUTION] (SAFE): The provided curl and jq examples are for local diagnostic use and do not involve privileged operations or remote code execution.
[NO_CODE] (SAFE): The skill contains only documentation and instructions, with no standalone script files.

debugging-output-and-previewing-html-using-ray