The Agent Skills Directory

Indirect Prompt Injection (LOW): The skill processes user-supplied feature descriptions to generate requirements documentation. While these inputs are untrusted, the skill's capability is limited to writing structured markdown to a specific documentation path (.claude/docs/ai/). This presents a minimal attack surface as the output is intended for human collaboration rather than automated execution.\n- File System Access (INFO): The skill is configured to write its findings to a local file. This behavior is clearly defined and restricted to a non-sensitive directory meant for agent-generated documentation.

frontend-to-backend-requirements