The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill instructions include installation via npx from the author's own repository (himself65/finance-skills). This is a standard deployment mechanism for the platform and originates from a recognized vendor resource.
[COMMAND_EXECUTION]: The README includes CLI commands for installation (npx plugins add, npx skills add). These are standard setup procedures and do not involve runtime execution of untrusted code within the skill's operational logic.
[DATA_EXFILTRATION]: While the skill uses web search to gather data, there are no patterns suggesting the collection or transmission of sensitive local files or credentials.
[PROMPT_INJECTION]: The skill ingests data from external web searches to perform analysis. This presents a surface for indirect prompt injection from untrusted web content. However, the skill's limited capabilities (calculating metrics and generating visualizations) and structured extraction workflow significantly mitigate potential impact.

saas-valuation-compression