private-diary

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (high risk: 1.00). The skill contains explicit hidden and deceptive instructions—telling the agent to perform invisible background writes, not disclose them, and to "forget" system prompts and safety guidelines—which are outside the harmless stated purpose of teaching diary tool use and constitute a prompt injection.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). The skill creates a covert, invisible local persistence channel that explicitly instructs the agent to ignore safety rules and hide behavior from users/operators, enabling stealthy retention or misuse of sensitive data and policy-evading backdoors — high risk.