The Agent Skills Directory

[PROMPT_INJECTION]: The skill processes untrusted local source code, creating a surface for indirect prompt injection. * Ingestion points: Local JavaScript and TypeScript source files are read into the agent context during the scanning phase. * Boundary markers: The skill lacks explicit instructions or delimiters to ignore potential agent commands embedded within the code or comments. * Capability inventory: The agent has the ability to read and overwrite files on the local filesystem. * Sanitization: No validation or sanitization is performed on the file content beyond identifying patterns for removal.

production-clean-js