The Agent Skills Directory

Prompt Injection (LOW): The skill identifies a surface for indirect prompt injection. 1. Ingestion points: The $ARGUMENTS placeholder in SKILL.md is used to inject context into the prompt. 2. Boundary markers: Absent. No specific delimiters or safety warnings are used to separate user data from instructions. 3. Capability inventory: The skill is authorized to use the Bash tool, which increases the impact if an injection occurs. 4. Sanitization: Absent. The skill does not perform any pre-processing or validation of the input data.

git-helper