The Agent Skills Directory

[INDIRECT_PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as subagents process external target data and scan tool outputs without explicit boundary markers or sanitization. Ingestion points: $ARGUMENTS and scan results from Phase 1 and Phase 4. Boundary markers: Absent. Capability inventory: High; subagents are directed to modify code, configure infrastructure, and perform network operations. Sanitization: Not explicitly defined.
[COMMAND_EXECUTION]: The skill instructs subagents to utilize powerful security and exploitation frameworks such as Metasploit and Burp Suite, which is an expected capability for its primary purpose of security hardening and validation.
[PROMPT_INJECTION]: The use of user-supplied $ARGUMENTS directly within subagent prompts creates a potential vector for direct injection, though this is managed by the agent architecture and intended security-focused context.

security-scanning-security-hardening