The Agent Skills Directory

[INDIRECT_PROMPT_INJECTION] (LOW): The skill processes untrusted external data which could contain malicious instructions designed to manipulate the agent's output.
Ingestion points: Processes SEC filings (10-K, 10-Q, 8-K, S-1) as defined in SKILL.md.
Boundary markers: Absent; the instructions do not specify delimiters or safety warnings for the input text.
Capability inventory: No capabilities for code execution (eval/exec), file system writes, or network requests were found in any file.
Sanitization: No input validation or sanitization logic is present.
[NO_CODE] (SAFE): The skill is purely configuration-based and instructional. It contains no Python scripts, Node.js code, or shell commands, which significantly reduces the attack surface.

sec-filing-evidence-extractor