The Agent Skills Directory

[PROMPT_INJECTION]: Potential for indirect prompt injection via external data sources. Ingestion points: The skill instructs the agent to analyze database query logs and profiling data (e.g., pg_stat_statements) to identify caching candidates. Boundary markers: There are no explicit instructions to treat log content as untrusted or to use delimiters to prevent command injection from log entries. Capability inventory: The agent has access to file system modification (Write, Edit) and shell execution (Bash), which could be targeted by instructions hidden in logs. Sanitization: The instructions do not specify any validation or sanitization steps for the data retrieved from the database logs.

implementing-database-caching