The Agent Skills Directory

[COMMAND_EXECUTION]: The skill requests Bash(cmd:*) access which is used for repository-wide changes and test validation.
[PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its core functionality.
Ingestion points: Operations span hundreds or thousands of codebase files as described in SKILL.md and implementation.md.
Boundary markers: There are no instructions to use delimiters or ignore embedded natural language instructions within the code files being processed.
Capability inventory: The agent has access to Read, Write, Edit, and Bash tools to modify the environment.
Sanitization: No sanitization or validation of the ingested code content is specified in the implementation guide before the agent acts upon it.

windsurf-refactoring-large