The Agent Skills Directory

[PROMPT_INJECTION]: The skill processes untrusted external data from implementation files, creating an attack surface for indirect prompt injection.\n- Ingestion points: Implementation files (.cs) and specification files (.md) are read using grep, find, and standard read tools.\n- Boundary markers: No explicit delimiters or instructions are used to distinguish between data and commands when processing file content.\n- Capability inventory: The skill utilizes Bash, Write, and Edit tools, allowing for file modification and system command execution.\n- Sanitization: Content read from external files is processed without validation or sanitization against embedded instructions.\n- [COMMAND_EXECUTION]: The skill uses the Bash tool to perform repository analysis and file discovery.\n- Evidence: Employs standard commands such as git diff, git log, find, and grep to identify changes and cross-reference code with specifications. These operations are limited to local repository metadata and filesystem searches.

tasks-spec-update