The Agent Skills Directory

[COMMAND_EXECUTION]: The skill executes a project-local Python script (_bmad/scripts/resolve_config.py) to merge and resolve agent configurations from various local TOML files.- [DATA_EXPOSURE]: The skill accesses local project files, specifically _bmad/core/config.yaml and project-context.md, to resolve user settings and provide background context for the AI discussion.- [PROMPT_INJECTION]: The skill interpolates untrusted data from the user and project context files into prompts for subagents. While these are organized under clear Markdown headers, there is an absence of explicit boundary markers or instructions to ignore potentially malicious commands embedded in the external data.

bmad-party-mode