The Agent Skills Directory

[Prompt Injection] (SAFE): No instructions or patterns attempting to override agent behavior, bypass safety filters, or extract system prompts were detected.- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials (API keys, tokens, or secrets) were found. The skill promotes a secure pattern of centralized service access via appServices and emphasizes checking authentication and authorization states.- [Obfuscation] (SAFE): The provided documentation and code snippets are clear and readable, with no evidence of Base64 encoding, zero-width characters, or homoglyph-based evasion.- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill uses standard, well-known development tools (flutter test, flutter analyze) and does not involve downloading or executing untrusted remote scripts or packages.- [Privilege Escalation] (SAFE): No commands or patterns were found that attempt to gain elevated system privileges or bypass operating system security controls.- [Indirect Prompt Injection] (SAFE): While the skill is designed to process user requirements and data via services, it enforces strict architectural boundaries, mandatory permission guards (appServices.authorization.can*), and structured error handling, which collectively mitigate the risk of indirect injection exploitation.- [Dynamic Execution] (SAFE): No evidence of unsafe dynamic code generation, such as the use of eval() or runtime compilation of untrusted strings, was found.

flutter-developer