The Agent Skills Directory

PROMPT_INJECTION (HIGH): The skill is highly vulnerable to Indirect Prompt Injection (Category 8). It ingests untrusted 'Student Work' (File: SKILL.md, Section: Required Inputs) and uses it to perform 'Analyze Work Against Each Criterion' and 'Determine Performance Level'.
Ingestion points: student_response parameter in skill.py and --submission flag in SKILL.md.
Boundary markers: None detected. The workflow indicates direct reading of student content without delimiters or instructions to ignore embedded commands.
Capability inventory: The skill possesses 'write/execute' equivalents in an educational context—specifically generating official 'Grading Reports' and 'Total Points' which could influence student records or downstream 'Gradebook systems'.
Sanitization: No evidence of sanitization or filtering of the student_response before it is processed by the AI for analysis.
COMMAND_EXECUTION (LOW): The SKILL.md file documentation showcases a CLI interface (/curriculum.grade-assist) with file system paths (submissions/*.pdf). While the provided skill.py is a simulation, the documented usage implies high-privilege file system access and batch processing capabilities.

curriculum-grade-assist