The Agent Skills Directory

[SAFE]: No malicious code, obfuscation, or persistence mechanisms were detected. The skill correctly restricts its reconnaissance phase to project manifests and configuration files to build a structural map of the codebase.
[PROMPT_INJECTION]: The skill processes untrusted codebase data to generate documentation, which represents a surface for indirect prompt injection. Ingestion points: Phase 1 through 3 in SKILL.md involve reading project manifests, framework configurations, and source code. Boundary markers: The instructions do not define explicit delimiters or 'ignore' instructions for the data being analyzed. Capability inventory: The skill reads local repository files and writes an AGENTS.md configuration file. Sanitization: No explicit sanitization or filtering of the content read from the codebase is specified.

codebase-onboarding