The Agent Skills Directory

[SAFE]: No malicious patterns, prompt injections, or unauthorized data exfiltration were found. The skill adheres to industry-standard practices for payment processing and tax compliance.
[PROMPT_INJECTION]: The instructions and examples do not contain attempts to override agent behavior, bypass safety filters, or extract system prompts.
[DATA_EXFILTRATION]: No hardcoded credentials or suspicious network operations to untrusted domains were detected. The skill correctly suggests using environment variables and refers to well-known services like Stripe, TaxBandits, and Track1099.
[REMOTE_CODE_EXECUTION]: No patterns for downloading or executing remote scripts from untrusted sources were identified. The suggested libraries and plugins are well-known in the industry.
[INDIRECT_PROMPT_INJECTION]: The skill processes untrusted data such as order totals and seller information. While this creates a potential attack surface, the provided code snippets demonstrate standard implementation patterns for marketplace logic without unsafe interpolation into executable contexts.
[COMMAND_EXECUTION]: The skill does not implement or suggest arbitrary shell command execution or unsafe subprocess spawning.

payout-split-management