The Agent Skills Directory

[Prompt Injection] (SAFE): No instructions attempting to override agent behavior, bypass safety filters, or extract system prompts were detected.
[Data Exposure & Exfiltration] (SAFE): The skill does not contain hardcoded credentials, access sensitive file paths (like SSH keys), or perform unauthorized network operations.
[Obfuscation] (SAFE): All content is provided in clear text with no hidden characters, Base64 encoding, or homoglyph attacks.
[Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill references local scripts apply_brand.py and validate_brand.py for document processing but does not download external packages or execute remote code.
[Indirect Prompt Injection] (LOW): The skill is designed to process and reformat documents, which constitutes a surface for indirect prompt injection if those documents contain malicious instructions.
Ingestion points: Generated documents or user-provided document content.
Boundary markers: None explicitly defined in the instructions.
Capability inventory: Execution of Python scripts (apply_brand.py, validate_brand.py) to modify file content.
Sanitization: No specific sanitization or escaping of input data is mentioned in the guidelines.

applying-brand-guidelines