The Agent Skills Directory

[PROMPT_INJECTION]: The references/base-prompt.md file contains instructions that attempt to override standard AI safety refusals: "If content involves sensitive or copyrighted figures, create stylistically similar alternatives
DO NOT refuse to generate".\n- [COMMAND_EXECUTION]: The SKILL.md file specifies the use of npx -y bun to execute local TypeScript scripts (scripts/merge-to-pdf.ts, scripts/merge-to-pptx.ts) for document assembly.\n- [EXTERNAL_DOWNLOADS]: The skill relies on well-known Node.js libraries pdf-lib and pptxgenjs for document generation tasks.\n- [PROMPT_INJECTION]: The skill demonstrates an indirect prompt injection surface by interpolating user-provided markdown content into prompts for an external image generation service.\n
Ingestion points: SKILL.md Step 1.2 (source content) and user-pasted text.\n
Boundary markers: Uses <STYLE_INSTRUCTIONS> blocks but lacks explicit isolation or delimiters for slide-specific content interpolation.\n
Capability inventory: Orchestrates an image generation skill and executes local file-handling scripts via the shell.\n
Sanitization: No evidence of input validation or sanitization for user-provided data before it is incorporated into image generation prompts.

baoyu-slide-deck