The Agent Skills Directory

[DATA_EXFILTRATION]: The skill hardcodes an absolute file path pointing to a specific user's directory on the Windows host machine (/mnt/c/Users/AllFluence-User/Workspaces/AIOX/SynkraAI/aiox-core), which exposes internal naming conventions and directory structures.
[EXTERNAL_DOWNLOADS]: The error handling logic suggests installing the 'coderabbit-cli' package from a public registry (PyPI) to resolve environment issues.
[COMMAND_EXECUTION]: The skill builds and executes bash commands within a WSL distribution, allowing for arbitrary CLI tool interaction and access to the host file system via mount points.
[PROMPT_INJECTION]: The 'Self-Healing Loop' interprets output from an external tool (CodeRabbit) to determine and apply code fixes. This creates a surface for indirect prompt injection where malicious or unexpected tool results could direct the agent to perform unintended file modifications.
Ingestion points: CodeRabbit CLI review results (parsed in Step 4).
Boundary markers: None; output is directly classified by severity to trigger automated actions.
Capability inventory: Execution of arbitrary bash commands and modification of local source files in the self-healing phase.
Sanitization: No validation or sanitization of the tool's findings is documented before they are used to generate 'auto-fixes'.

coderabbit-review