The Agent Skills Directory

[SAFE]: The skill consists entirely of markdown and instructional prompts. It does not include any executable scripts (.sh, .py, .js), binaries, or configuration files that could execute commands.
[SAFE]: No network operations (e.g., curl, wget, fetch) or data exfiltration patterns were identified. The skill does not communicate with any external domains.
[SAFE]: No sensitive file paths, hardcoded credentials, or environment variable access patterns were found.
[SAFE]: The content is clear and readable. There is no evidence of obfuscation techniques such as Base64 encoding, zero-width characters, or homoglyph attacks.
[PROMPT_INJECTION]: The skill processes external data via fields like task_description and task_materials. While this creates an indirect prompt injection surface, the risk is minimal because the skill lacks the capabilities (tools, network access, file system writes) necessary to perform harmful actions if the AI were manipulated by the input text. The prompt includes structured guidance and self-check steps which help maintain the intended behavior.

cognitive-load-analyser