The Agent Skills Directory

[CREDENTIALS_UNSAFE]: The skill requires a TIG_PRIVATE_KEY environment variable for mainnet submissions. Handling raw private keys in environment variables poses a risk of accidental exposure or logging of highly sensitive credentials.- [COMMAND_EXECUTION]: The test command executes code, which may be modified or generated by an LLM, using Docker benchmarks via the Bash tool. While Docker provides isolation, the execution of non-static code remains a significant security surface.- [EXTERNAL_DOWNLOADS]: The skill downloads external algorithm source code from the TIG network API (api.tig.foundation) for the purpose of analysis and optimization.- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it ingests untrusted code from external sources to be analyzed by an LLM. This code could contain instructions designed to manipulate the optimization process or the agent's actions.
Ingestion points: External algorithm source code downloaded via tig-innovator analyze.
Boundary markers: None identified in the skill documentation to separate instructions from the data being analyzed.
Capability inventory: Includes file system access (Write tool), shell execution (Bash tool), and network/blockchain submission capabilities.
Sanitization: No mentions of sanitization or safety validation of the downloaded code before processing by the LLM.

tig-innovator