The Agent Skills Directory

[PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection as it is designed to ingest and process data from external project management tools.
Ingestion points: The skill instructions (SKILL.md) direct the agent to gather evidence from work sources such as Jira, Linear, GitHub Projects, and local files using the Read and Glob tools.
Boundary markers: The output templates provided in the Coordination Cadence Brief do not utilize explicit delimiters or 'ignore embedded instructions' warnings for user-supplied data.
Capability inventory: The skill has access to powerful tools including Bash, Write, Edit, and Grep which could be targeted by instructions embedded in ingested data.
Sanitization: No explicit validation or filtering logic for external content is defined in the instructions.
[COMMAND_EXECUTION]: The skill configuration requests access to the Bash shell and file manipulation tools (Write, Edit). While these are common for developer-oriented skills, they represent a significant capability set if the agent is influenced by untrusted data.
[EXTERNAL_DOWNLOADS]: The skill references documentation and guidelines from well-known technology organizations and services, including Atlassian, GitLab, and Scrum.org. These are documented as informative references for the user and the agent.

standup-meeting