The Agent Skills Directory

[PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted user input to generate executable code.
Ingestion points: User input provided via the $ARGUMENTS variable is used to define component specifications such as names, properties, and descriptions in SKILL.md.
Boundary markers: The instructions lack explicit delimiters or safety instructions (e.g., 'treat input as data, not instructions') to prevent the agent from being misled by content within the user's requirements.
Capability inventory: The skill's primary purpose is to generate boilerplate for React components, including logic, styles, and test files.
Sanitization: There is no evidence of input validation or escaping before user-provided strings are interpolated into the generated code templates.

frontend-mobile-development-component-scaffold