The Agent Skills Directory

[Indirect Prompt Injection] (MEDIUM): Vulnerability to XSS via unsanitized data rendering. Ingestion points: The data prop in InteractiveChart (assets/interactive-template.jsx) which may contain untrusted external data from sources the agent reads. Boundary markers: Absent. Capability inventory: The skill uses the D3.js .html() method to render tooltips. Sanitization: Absent; properties such as d.label are interpolated directly into the HTML string without escaping, allowing for arbitrary JavaScript execution (XSS) in the context where the chart is rendered. This could lead to session hijacking or data exfiltration from the user's browser environment.

d3-viz