The Agent Skills Directory

Prompt Injection (SAFE): No instructions found that attempt to override agent behavior, bypass safety filters, or extract system prompts. The skill uses standard instructional language for its intended regulatory persona.- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or network operations detected. The script 'regulatory_tracker.py' only performs local file read/write operations on a specific JSON data file.- Obfuscation (SAFE): No evidence of Base64, zero-width characters, homoglyphs, or other encoding techniques used to hide malicious intent.- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill does not download external packages or execute remote scripts. The Python script relies solely on standard library modules.- Privilege Escalation (SAFE): No commands for escalating privileges or modifying system configurations were found.- Persistence Mechanisms (SAFE): No attempts to maintain access across sessions or modify shell profiles/startup tasks.- Indirect Prompt Injection (LOW): While the skill ingests data from a local JSON file ('regulatory_submissions.json'), the lack of high-risk capabilities like network access or arbitrary command execution prevents this from being a viable attack vector.

regulatory-affairs-head