The Agent Skills Directory

[SAFE]: The skill consists entirely of natural language instructions for user research planning and synthesis. No malicious patterns or security risks were identified.
[DATA_EXFILTRATION]: There are no commands for network communication or access to sensitive local files such as credentials or SSH keys.
[PROMPT_INJECTION]: The instructions do not attempt to bypass safety filters, ignore previous instructions, or extract system prompts.
[EXTERNAL_DOWNLOADS]: The skill does not reference or download any external scripts, packages, or remote content.
[REMOTE_CODE_EXECUTION]: No executable code, shell commands, or dynamic execution patterns are present in the instructions.
[INDIRECT_PROMPT_INJECTION]: While the skill is designed to process external user-provided data (research transcripts and notes), it lacks the necessary capabilities (such as network access or file system writes) to facilitate an exploit. The risk is limited to the accuracy of the generated summary.

layers-observed-behaviour