The Agent Skills Directory

[PROMPT_INJECTION]: Indirect prompt injection surface identified where the skill processes data from external API responses.
Ingestion points: User-provided addresses and responses from api.mapbox.com are processed in SKILL.md within the geocode and getRoute functions.
Boundary markers: No explicit boundary markers or instructions to disregard embedded commands in external data were found.
Capability inventory: The skill examples in SKILL.md describe agent capabilities such as project scaffolding and dependency installation.
Sanitization: While URL encoding is used for the API request, there is no validation or sanitization of the data returned from the API.

mapbox