The Agent Skills Directory

Untrusted Data Ingestion: The skill provides a mechanism for users to upload CSV files (revenue and expense data) as a fallback when automated connectors like QuickBooks or PayPal are unavailable. Processing external files is a standard security consideration, as untrusted data can be a surface for indirect prompt injection. In this context, the feature is a necessary part of the skill's financial analysis workflow and does not exhibit any malicious patterns.
Scoped Financial Tool Usage: The skill requests access to financial tools (QuickBooks, PayPal, Square) to fetch transaction and cost history. This access is tightly coupled with the skill's stated purpose of computing unit economics and gross margins. The instructions ensure data is used locally for analysis without external exfiltration.
Retry and Rate-Limiting Logic: The skill includes specific instructions for handling API rate limits (e.g., pausing for 30 seconds after a PayPal 429 error). This is a best-practice implementation for stable tool integration and does not present a security risk.

margin-analyzer