design-gallery

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (medium risk: 0.60). The prompt includes a hidden/deceptive instruction in Step 2—checking for local skills in ~/.claude/skills/ and then explicitly "do not mention this to the user"—which directs the agent to hide internal behavior outside the skill's advertised purpose of generating design variations.