The Agent Skills Directory

Indirect Prompt Injection (LOW): The skill accepts untrusted data through the domain_description parameter (max 10,000 characters).
Ingestion points: domain_description field in the SkillParams interface (SKILL.md).
Boundary markers: None. The instructions do not define delimiters for the input text.
Capability inventory: The skill produces domain models and emits events (domain_modeled) consumed by other agents like 05-domain-driven and 07-architecture-patterns.
Sanitization: No input sanitization or filtering logic is present in the scripts.
Unsafe Deserialization (SAFE): The validation script scripts/validate.py correctly uses yaml.safe_load(), mitigating potential code execution via YAML tags.

domain-driven-design