The Agent Skills Directory

Prompt Injection (SAFE): The instructions in SKILL.md define a specific behavioral persona for the agent but do not contain attempts to bypass safety filters, extract system prompts, or override core instructions in an adversarial manner.- Remote Code Execution (SAFE): There are no scripts, binaries, or shell commands present in the skill files. No code execution surface exists.- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or network request patterns (e.g., curl, fetch) were identified. All URLs provided are for informational resources.- Obfuscation (SAFE): All analyzed files contain plain-text markdown content with no evidence of Base64 encoding, zero-width characters, or homoglyph attacks.- Indirect Prompt Injection (SAFE): The skill does not possess an attack surface for indirect injection; it specifically instructs the agent not to run tools or read external files at runtime.

hierarchy-of-engagement