The Agent Skills Directory

[SAFE]: No malicious patterns were identified. The skill's logic is restricted to reading, writing, and organizing local files within a defined wiki structure.
[PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection by processing untrusted data from the raw/ directory. * Ingestion points: Source files in the raw/ directory are read in full. * Boundary markers: No explicit delimiters or instructions to ignore embedded commands are used. * Capability inventory: The skill has access to Bash, Read, Write, Edit, Glob, and Grep tools. * Sanitization: The content of source files is not sanitized or validated before processing.

second-brain-ingest