The Agent Skills Directory

[Indirect Prompt Injection] (LOW): The skill structure includes a vulnerability surface for indirect prompt injection.
Ingestion points: Processes external data via the Read and Edit tools specified in SKILL.md.
Boundary markers: No explicit delimiters or instructions are present to differentiate between user data and system instructions.
Capability inventory: The agent is granted the Bash, Grep, Write, and Edit tools, providing significant system access.
Sanitization: The skill definition lacks any input validation or sanitization mechanisms to filter malicious content within diagram data.

mermaid-er-diagram-creator