The Agent Skills Directory

[Prompt Injection] (LOW): Indirect prompt injection surface identified through codebase exploration and user input processing. Ingestion points: Repository files and user-provided project descriptions (Steps 1 and 2). Boundary markers: Absent; there are no instructions or delimiters defined to separate untrusted repository content from the agent's core instructions. Capability inventory: The skill uses tools to read the filesystem and make network requests to GitHub for issue submission. Sanitization: Absent; the skill does not implement filtering or escaping for the data retrieved from the repository before it is incorporated into the final PRD output.

write-a-prd