The Agent Skills Directory

Indirect Prompt Injection (INFO): The skill is designed to analyze untrusted external smart contract code. While this is an inherent attack surface, the risk is negligible as the skill lacks automated side-effect capabilities.
[Ingestion points]: Smart contract code and audit logs are processed as described in SKILL.md.
[Boundary markers]: No explicit delimiters are defined for external content.
[Capability inventory]: Scripts are limited to local validation without file system modification or network access.
[Sanitization]: No sanitization is implemented for the processed data.
Metadata Poisoning (LOW): There is a version mismatch between SKILL.md (v2.0.0) and assets/config.yaml (v1.0.0), indicating minor maintenance oversights that do not impact security.

smart-contract-security