The Agent Skills Directory

[PROMPT_INJECTION]: Indirect Prompt Injection Surface. The skill is designed to ingest and process data related to vulnerability reports, which often originates from untrusted external sources (e.g., security scan outputs).
Ingestion points: Uses the Read and Grep tools to retrieve external data for processing (SKILL.md).
Boundary markers: The instructions lack explicit delimiters or instructions to ignore embedded commands within the data being analyzed.
Capability inventory: The skill is configured with high-privilege capabilities including Bash, Write, and Edit (SKILL.md).
Sanitization: No sanitization or validation logic is specified for the data processed during the report generation workflow.

vulnerability-report-generator