The Agent Skills Directory

[Indirect Prompt Injection] (LOW): The skill processes untrusted input with high-privilege capabilities, creating a surface for indirect prompt injection. Ingestion points: Data enters via the $ARGUMENTS variable and the .guidelines/palettes.md file. Boundary markers: No delimiters are present to separate user data from agent instructions. Capability inventory: The skill allows access to Read, Grep, Glob, Edit, Write, and Bash tools. Sanitization: No input validation or sanitization measures are implemented.

moonshine-palettes