The Agent Skills Directory

[COMMAND_EXECUTION]: The skill facilitates the execution of shell commands such as npm test, find, and grep, redirecting their output to local files. It also references local helper scripts (scripts/response-save.sh) used to wrap and execute command strings.
[EXTERNAL_DOWNLOADS]: Usage patterns in the skill demonstrate fetching data from external API endpoints using the curl tool.
[DATA_EXFILTRATION]: The skill recommends storing command outputs and API payloads in the world-readable /tmp/aura-frog/ directory. While intended for local context management, this could lead to unintended exposure of sensitive data to other users or processes on the same system.
[PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests untrusted data from external sources (API responses, test outputs) and presents extracted summaries to the agent without explicit sanitization.
Ingestion points: Captured output from shell commands and external network requests.
Boundary markers: Absent; no delimiters are suggested to isolate untrusted content from agent instructions.
Capability inventory: The skill uses Read, Write, and Bash tools which can be manipulated by injected instructions.
Sanitization: Absent; the skill uses jq and grep for extraction but does not filter for malicious instruction patterns.

response-analyzer