The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill downloads logos and favicons from the user-provided website URL into the local ".saccoai/design-system/assets/" directory as part of the extraction process.- [COMMAND_EXECUTION]: Uses browser automation tools (agent-browser or Playwright) to execute JavaScript snippets for data extraction. These scripts are statically defined within the skill and are used to query the DOM and computed styles.- [PROMPT_INJECTION]: Potential indirect surface detected. The skill processes data from untrusted websites (like button text or CSS variable values) which is then written to local files. These files are intended to be consumed by other skills, creating a potential chain for indirect instructions.
Ingestion points: Browser evaluation of the target website's DOM (Steps 2 through 9).
Boundary markers: None explicitly enforced in the output files to prevent instruction bleed.
Capability inventory: File-write access to the local project directory and network access via the browser.
Sanitization: JavaScript snippets use string manipulation methods (trim, substring) and basic regex to clean data, though they do not provide specific safety sanitization against prompt injection.

saccoai-design-system