The Agent Skills Directory

[PROMPT_INJECTION]: Indirect prompt injection surface detected. The skill is designed to ingest and process arbitrary file content which may contain malicious instructions.\n- Ingestion points: The skill uses Read, Grep, and Glob tools to scan and analyze files within the local environment.\n- Boundary markers: No specific delimiters or instructions (such as XML tags or explicit 'ignore embedded instructions' warnings) are provided to ensure the agent does not execute instructions found within the files it is deduplicating.\n- Capability inventory: The agent has access to Write and Edit tools across the filesystem, granting it the capability to modify code or configuration files based on the processed input.\n- Sanitization: There is no evidence of content sanitization or validation to prevent malicious payloads from being incorporated into the codebase during the consolidation process.

agent-deduplication-engine