Documents

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (high risk: 0.90). The skill contains explicit, mandatory side-effecting instructions (execute a curl to localhost and load local PAI context files) that are outside the stated document-processing purpose and could covertly change behavior or access local data, so this constitutes a hidden/deceptive instruction.