The Agent Skills Directory

[PROMPT_INJECTION]: The skill incorporates user-provided issue descriptions through the $ARGUMENTS variable within <issues> tags. This creates an attack surface for indirect prompt injection, where malicious instructions could be embedded within bug reports or feature requests to manipulate the agent's logic.\n
Ingestion points: The $ARGUMENTS variable in SKILL.md receives external input inside the <issues> XML-style block.\n
Boundary markers: The input is delimited by <issues> and </issues> tags.\n
Capability inventory: The skill utilizes tools for filesystem modifications (via /code), git repository management (via git-manager), and interactive user querying (via AskUserQuestion).\n
Sanitization: While no explicit input filtering is mentioned, the skill mandates a 'Confidence & Evidence Gate' requiring 80%+ confidence and specific file:line proof before acting, which provides a procedural check against unverified instructions.\n- [COMMAND_EXECUTION]: The skill's workflow depends on executing commands and code via specialized tools and subagents (e.g., /code, /prove-fix, and various subagents) to research, plan, and implement fixes within the development environment.

fix-hard