The Agent Skills Directory

CREDENTIALS_UNSAFE (LOW): The setup instructions recommend running 'scripts/search setup ', which passes sensitive credentials as a command-line argument. This is a security weakness because arguments can be captured in shell history or viewed by other users via process monitoring tools.- PROMPT_INJECTION (LOW): The skill has an indirect prompt injection surface. It retrieves and processes full-text article content from an external source (medRxiv). Evidence: 1. Ingestion point: 'results[].content' in SKILL.md. 2. Boundary markers: None described. 3. Capability inventory: Local script execution (bash/node). 4. Sanitization: No sanitization or escaping of external content is mentioned.- COMMAND_EXECUTION (LOW): The skill relies on executing local bash and Node.js scripts. It uses a complex 'find' command to resolve script paths within the user's home directory (~/.claude/plugins/cache), which is a common but sensitive operation.

medrxiv-search