The Agent Skills Directory

[SAFE] (SAFE): The skill's primary function is to provide structured prompts for code analysis. No malicious code, unauthorized filesystem access outside the target directories, or secret exfiltration patterns were found. The skill references local configuration paths (e.g., ~/.amplihack/) which are used for internal philosophy documentation and do not constitute a security risk.\n- [NO_CODE] (SAFE): The skill is composed entirely of Markdown files. It does not include any scripts (Python, JavaScript, shell) or binary executables, which eliminates the risk of direct command execution, library injection, or local privilege escalation through the skill itself.\n- [PROMPT_INJECTION] (LOW): The skill possesses a surface for indirect prompt injection because it is intended to process untrusted source code provided by users. \n
Ingestion points: User-specified file paths and module contents (e.g., QUICK_START.md line 15).\n
Boundary markers: Absent; instructions do not explicitly tell the agent to ignore instructions embedded within the analyzed code comments or strings.\n
Capability inventory: Static file reading and textual analysis generation. No network or execution capabilities are present.\n
Sanitization: Absent; the agent processes the raw text of the files. \nThis risk is inherent to the tool's intended use case and is categorized as low due to the lack of dangerous capabilities like network access or system modification in the skill's design.\n- Security Alert Evaluation: The automated scanner detection of 'logger.info' as a malicious URL is identified as a false positive. The scanner appears to have misidentified the standard programming pattern 'logger.info' (likely seeing '.info' as a top-level domain) as a blacklisted URL. No instances of this string or any malicious URLs were found in the provided file content, and the pattern itself is a benign logging operation.

code-smell-detector