The Agent Skills Directory

[SAFE]: The skill acts as a security auditor for environment variable configurations and does not exhibit malicious patterns, obfuscation, or unauthorized data exfiltration.
[COMMAND_EXECUTION]: The skill requests Bash tool permissions to perform codebase analysis via commands like grep and glob, which is consistent with its purpose of scanning files across different tech stacks.
[PROMPT_INJECTION]: The skill contains an indirect prompt injection surface inherent to its function of analyzing untrusted source code. Ingestion points: Codebase files and environment configurations are ingested via Glob, Grep, and Read operations in SKILL.md. Boundary markers: The workflow does not specify the use of delimiters to separate ingested content from instructions. Capability inventory: The skill possesses Bash and Write capabilities for file analysis and report generation. Sanitization: No explicit sanitization or filtering of the ingested content is documented.

ln-647-env-config-auditor