The Agent Skills Directory

Prompt Injection (LOW): The skill demonstrates an Indirect Prompt Injection surface (Category 8). 1. Ingestion points: User input is ingested via interface method parameters and interpolated into prompts via templates like '{{it}}'. 2. Boundary markers: The examples lack delimiters or instructions to distinguish user data from system prompts. 3. Capability inventory: The skill enables the model to call external Java methods through 'Tools' integration (e.g., the Calculator tool). 4. Sanitization: No input validation or filtering of user data is shown before it is passed to the LLM.
External Downloads (LOW): The skill references the 'dev.langchain4j' library via Maven and Gradle. Although this organization is not on the predefined trusted list, it is the standard and expected repository for the functionality documented.
Dynamic Execution (LOW): The 'AiServices' pattern generates dynamic proxy implementations of Java interfaces at runtime. This is the primary intended behavior of the framework and is considered a low-risk architectural feature in this context.

langchain4j-ai-services-patterns