The Agent Skills Directory

[Prompt Injection] (SAFE): The skill defines architectural reasoning patterns and does not contain any instructions to bypass safety filters or ignore previous system prompts.- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials or unauthorized network exfiltration patterns were found. The allowed tools are restricted to local file reading and thinking utilities.- [Remote Code Execution] (SAFE): The skill does not perform any external downloads or execute arbitrary shell commands.- [Indirect Prompt Injection] (LOW): The skill processes untrusted user input during the 'UltraThink' analysis phase. Evidence Chain: 1. Ingestion point: User requests and architecture queries. 2. Boundary markers: Absent; user input is directly interpolated into the reasoning steps. 3. Capability inventory: Local file access via 'Read', 'Grep', and 'Glob' tools. 4. Sanitization: No explicit sanitization or input validation mentioned. Risk is low as the capabilities are limited to information retrieval.

moai-workflow-thinking