The Agent Skills Directory

[PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by processing and reporting on untrusted log data (URIs and User-Agents).
Ingestion points: scripts/agent.py parses log files containing data from external web requests.
Boundary markers: The skill outputs a JSON report but lacks explicit delimiters or warnings to prevent downstream AI agents from following instructions embedded in the log entries.
Capability inventory: scripts/agent.py has file system access for reading logs and writing reports but does not have network or arbitrary command execution capabilities.
Sanitization: The script truncates long log fields but does not sanitize them for potentially malicious AI instructions.

analyzing-web-server-logs-for-intrusion