The Agent Skills Directory

PROMPT_INJECTION (LOW): The skill is designed to ingest and analyze external data such as API specifications and service architectures, which creates a surface for indirect prompt injection. * Ingestion points: API specifications and service architecture files (referenced in SKILL.md). * Boundary markers: The skill does not define specific delimiters or instructions for the agent to ignore potentially malicious embedded content within these files. * Capability inventory: The skill is granted access to powerful tools including Write, Task, and WebFetch, which could be abused if an injection is successful. * Sanitization: There is no evidence of sanitization or validation logic for the ingested external content.

contract-test-design