The Agent Skills Directory

[PROMPT_INJECTION]: The skill has an attack surface for indirect prompt injection because it is designed to ingest and visualize data from external files (CSV, JSON, Markdown). This is a functional requirement for data visualization and no malicious patterns were observed. Ingestion points: File reading logic in SKILL.md Step 1. Boundary markers: Not explicitly defined. Capability inventory: File system writes for PPTX, HTML, and PNG deliverables in REFERENCE.md. Sanitization: Includes basic numeric and markdown table parsing utilities.
[EXTERNAL_DOWNLOADS]: Interactive HTML dashboards utilize the Plotly.js library via a public CDN, which is a standard and safe practice for this type of visualization.
[COMMAND_EXECUTION]: The skill suggests standard installation procedures (git clone, cp) and common library installations via pip, all of which are appropriate for its intended use as a development tool.

data-viz-deck