The Agent Skills Directory

[PROMPT_INJECTION]: The skill processes untrusted external data which could lead to indirect prompt injection or the generation of malicious report content.
Ingestion points: The script scripts/process.py reads vulnerability and asset data from user-provided CSV files via pandas.read_csv().
Boundary markers: No boundary markers or instructions are provided to delineate untrusted data from the agent's core logic or to warn the agent about potential embedded instructions.
Capability inventory: scripts/process.py has the capability to write CSV and HTML files to the local file system. scripts/agent.py performs network GET requests to user-defined targets using provided credentials.
Sanitization: Data from the CSV files is directly interpolated into HTML dashboard templates using f-strings in scripts/process.py without sanitization or escaping, which could allow for the injection of malicious instructions or script content into the resulting output.

implementing-vulnerability-remediation-sla