The Agent Skills Directory

[PROMPT_INJECTION]: The skill processes untrusted technical drafts provided by users, which creates a potential surface for indirect prompt injection. * Ingestion points: The skill accepts technical text directly or reads from file paths provided by the user (SKILL.md). * Boundary markers: There are no explicit delimiters or instructions provided to the agent to ignore potential instructions embedded within the untrusted documentation. * Capability inventory: The skill is instructed to perform file-write operations by editing source files directly on the system (SKILL.md). * Sanitization: The skill does not specify any sanitization, escaping, or validation of the input content before processing.

polish-technical-docs