The Agent Skills Directory

Indirect Prompt Injection (LOW): The skill performs direct string interpolation of user-provided inputs into generated Kotlin code and YAML configurations. Ingestion points: package_name and main_activity inputs in the YAML frontmatter. Boundary markers: None. Capability inventory: The skill generates and writes multiple Kotlin files to the local filesystem and provides commands to execute them via the Gradle wrapper (./gradlew). Sanitization: Absent. There is no escaping or validation of these strings before they are injected into the source code templates, potentially allowing for code injection if malicious values are provided as inputs.
External Downloads (SAFE): The GitHub Actions workflow references several external actions including reactivecircus/android-emulator-runner and android-actions/setup-android. While these are not hosted by the specific organizations in the trusted sources list, they are widely recognized community standards for Android CI/CD pipelines and are used here in a conventional manner.

android-additional-tests