The Agent Skills Directory

[PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface due to the ingestion of untrusted external data. Ingestion points: The skill retrieves content from user-provided URLs and competitor pages identified via Google search results (Step 1 and Step 2 in SKILL.md). Boundary markers: The instructions do not employ delimiters or specific safety warnings to prevent the agent from executing instructions found within the fetched content. Capability inventory: The agent fetches external HTML/text content for semantic extraction. Sanitization: There is no explicit sanitization or filtering of the retrieved content mentioned in the instructions.
[EXTERNAL_DOWNLOADS]: The skill programmatically fetches data from arbitrary external URLs to conduct its semantic analysis. While this is consistent with its stated purpose, it represents the ingestion of remote, unverified data.

semantic-gap-analysis