The Agent Skills Directory

[PROMPT_INJECTION]: The skill functions by ingesting and analyzing untrusted user-provided data such as server logs, console outputs, and code snippets, which creates an indirect prompt injection surface.
Ingestion points: Data enters the context through user chat and file-reading tools used to inspect logs and source code.
Boundary markers: No specific delimiters or safety instructions are defined to separate untrusted data from the agent's instructions.
Capability inventory: The agent has the capability to read files and interpret code logic.
Sanitization: No input validation or sanitization of the provided logs or code is performed before processing.

project-bug-hunting