The Agent Skills Directory

[SAFE]: The skill's primary function is to analyze development artifacts (commits, PRs) and generate documentation. All operations, such as writing to docs/api-report/, are consistent with its stated purpose.
[PROMPT_INJECTION]: The skill processes untrusted external data (commit messages, PR bodies) which presents a potential surface for indirect prompt injection. However, the risk is minimal given the skill's narrow focus on changelog formatting and its limited write capabilities restricted to documentation directories.
Ingestion points: Git commits, PR bodies, and OpenAPI specification diffs.
Boundary markers: Not explicitly defined in the protocol instructions.
Capability inventory: File-system write access limited to the docs/api-report/ directory.
Sanitization: No explicit filtering or sanitization of input data is mentioned, relying on the agent's internal reasoning to filter 'internal noise'.

changelog-generator