The Agent Skills Directory

[SAFE]: The skill describes a standard product management process for handling post-launch feedback. It uses legitimate project management IDs (e.g., CFD-XXX, FEA-XXX) and standard documentation practices.
[PROMPT_INJECTION]: The skill is designed to ingest untrusted user feedback from external platforms such as Intercom, Discord, and in-app surveys, which introduces a theoretical surface for indirect prompt injection.
Ingestion points: Feedback data enters the system through structured CFD-XXX records documented in markdown files.
Boundary markers: Data is separated using markdown headers and key-value pairs; however, no explicit instructions are included to warn the agent about potentially malicious instructions embedded within user feedback.
Capability inventory: The skill is authorized to use Read, Write, Edit, WebSearch, and WebFetch tools as per the frontmatter configuration in SKILL.md.
Sanitization: No explicit content sanitization or validation logic is specified for the feedback strings before they are processed by the agent.

prd-v09-feedback-loop-setup