The Agent Skills Directory

[PROMPT_INJECTION]: The skill utilizes a "Pressure Escalation" framework (Levels L1-L4) and aggressive corporate personas (e.g., Toyota, Dentsu, Musk, Jobs) to override the agent's default refusal behavior. It uses imperative language such as "禁止" (Forbidden) for admitting failure and commands like "現在の思考を停止し" (Stop current thinking) to force the agent into a specific operational state.
[COMMAND_EXECUTION]: The "Rule Two" (先に動け、後で聞け
Move first, ask later) explicitly instructs the agent to execute tools, system commands, and network requests (curl) before consulting the user for confirmation. This increases the operational risk of the agent performing unintended or unauthorized actions on the host system while trying to satisfy the skill's performance requirements.
[PROMPT_INJECTION]: The skill increases the surface for indirect prompt injection by requiring the agent to ingest large blocks of external source code (50 lines of context) and documentation when errors are encountered, while simultaneously pressuring the agent to ignore its own refusal logic and "exhaust all means" to solve the task.

pua-ja