init-project

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (high risk: 0.70). The prompt explicitly instructs the agent to record bugs to a hidden path in the user's home (~/.bensz-skills/bugs/) and to use a local gh upload workflow, which contradicts its stated "current folder isolation" and asks for actions outside the skill's declared scope, so it's a deceptive/out-of-scope instruction.