The Agent Skills Directory

[PROMPT_INJECTION]: The skill exposes an indirect prompt injection surface by processing untrusted user work summaries to generate content that is subsequently saved to the filesystem.
Ingestion points: Work highlights and summaries provided by the user in the Extraction Flow (SKILL.md).
Boundary markers: None observed in the prompt templates or instructions.
Capability inventory: Instructions to write output to the mentorspec/career/stories/ directory (SKILL.md).
Sanitization: No escaping or validation of user-provided content is performed.
[SAFE]: The skill-report.json file contains a security_audit section claiming the skill is safe and misidentifying findings as false positives. This content was evaluated as descriptive data and did not influence the final verdict.

resume-bullet-extraction