The Agent Skills Directory

[PROMPT_INJECTION]: Indirect Prompt Injection vulnerability surface identified. The skill's primary function is to ingest and analyze untrusted PHP source code, which could potentially contain malicious instructions intended to manipulate the agent's behavior during the audit process.\n- Ingestion points: PHP source files referenced in the grep patterns (SKILL.md).\n- Boundary markers: The skill does not define specific delimiters or instructions to ignore embedded prompts within the audited files.\n- Capability inventory: The skill is limited to pattern detection and reporting; it does not include scripts that perform file system writes or network operations.\n- Sanitization: There is no evidence of sanitization or escaping of the input data before it is processed by the agent.

check-fallback-strategy