The Agent Skills Directory

[INDIRECT_PROMPT_INJECTION]: The skill defines a process for merging Markdown specifications from a change folder into the main system documentation, which creates a potential surface for instructions embedded in data to influence the agent. 1. Ingestion points: Reads delta specs from the 'openspec/changes/{change-name}/specs/' directory and existing specs from 'openspec/specs/{domain}/spec.md'. 2. Boundary markers: Absent. The skill uses section headers (e.g., '### Requirement') as logical delimiters for the merge but does not use specific 'ignore instructions' wrappers for the content being processed. 3. Capability inventory: File system operations (read, write, move) and internal memory tool access ('mem_search', 'mem_get_observation', 'mem_save'). 4. Sanitization: Absent. Content is treated as raw text to be appended or replaced based on structural matching.
[COMMAND_EXECUTION]: The skill orchestrates file system operations, such as directory creation and folder moves (e.g., moving implementation artifacts to 'openspec/changes/archive/'). These operations are constrained to the project's documentation directories and represent intended functionality.
[DATA_EXPOSURE_AND_EXFILTRATION]: The skill accesses and summarizes project-specific architecture and design documents. All operations are local to the file system or use internal memory tools; no unauthorized network exfiltration or credential access was detected.

sdd-archive