The Agent Skills Directory

[PROMPT_INJECTION]: The skill is designed to analyze and review user-provided UI component code while having access to sensitive tools like Bash, Write, and Edit. This creates an indirect prompt injection vulnerability surface where an attacker could embed malicious instructions in code comments or metadata that the agent might inadvertently execute.
Ingestion points: User-provided source code and project files provided for review or refactoring (as indicated in SKILL.md capabilities).
Boundary markers: The skill instructions do not define clear delimiters or provide directives to ignore instructions contained within the analyzed data.
Capability inventory: Includes access to Read, Write, Edit, Bash, Grep, and Glob tools across the skill context.
Sanitization: No sanitization or content validation of the input code is implemented before it enters the agent's context.

ui-components-expert