The Agent Skills Directory

[SAFE] (SAFE): The skill is composed entirely of markdown documentation. There are no executable scripts, command-line operations, or configuration files that could pose a direct security risk.
[INDIRECT_PROMPT_INJECTION] (SAFE): The skill workflow involves processing untrusted data, specifically external source code and security test results. Ingestion points: SKILL.md Phase 1 (reconnaissance) and Phase 2 (code analysis). Capability inventory: None. While boundary markers and sanitization instructions are absent, the skill does not implement any functional tools or automated capabilities that would enable an attacker to exploit the agent via indirect injection in the analyzed files.

fix-code-vulnerability