The Agent Skills Directory

PROMPT_INJECTION (LOW): The skill is susceptible to indirect prompt injection by processing untrusted user queries and API results without sanitization.\n
Ingestion points: User input via command-line arguments (sys.argv) in lookup.py and examples.py.\n
Boundary markers: Absent; no delimiters or 'ignore embedded instructions' warnings are present in the analyzed scripts to separate user input from system prompts.\n
Capability inventory: The skill (via ResearchLookup) performs network requests to external LLM providers and returns content to the agent context.\n
Sanitization: No input validation or output escaping is performed on the query or the retrieved research results.

research-lookup