The Agent Skills Directory

[SAFE]: No malicious behaviors or patterns, such as unauthorized data exfiltration or hardcoded credentials, were detected. The skill operates within its intended scope to assist in project documentation.\n- [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection as it processes information from potentially untrusted local project files to generate the README content. Ingestion points: Local project files (e.g., package.json, source code) accessed in SKILL.md to identify components and purpose. Boundary markers: None present to instruct the agent to ignore instructions embedded within those files. Capability inventory: Uses the write_file tool to create or update the README.md file. Sanitization: No specific filtering or sanitization of the project file content is mentioned. The risk is considered low due to the constrained nature of the generation task.

opensource-readme-generator