The Agent Skills Directory

Category 8: Indirect Prompt Injection (INFO): The skill is designed to process external untrusted content such as source code, documentation, and git diffs (e.g., in explain_code.md and summarize_git_diff.md). Evidence Chain: 1. Ingestion points: Code walkthroughs and diff summaries. 2. Boundary markers: Absent. 3. Capability inventory: None; the skill is limited to text generation and lacks file-writing, network access, or command execution capabilities. 4. Sanitization: None. Severity is INFO as the risk is confined to display-only content.
General Security (SAFE): Systematic analysis of the 10 provided files confirms the absence of prompt injection, obfuscation, hardcoded credentials, or persistence mechanisms. The skill operates purely within the text-processing domain.

technical-documentation