The Agent Skills Directory

[PROMPT_INJECTION]: The skill is vulnerable to Indirect Prompt Injection as it processes a codebase to identify and delete 'dead' code and files. Malicious instructions could be embedded in the codebase to manipulate the agent's cleanup logic.
Ingestion points: The agent reads the local codebase, including all source files and configuration.
Boundary markers: Absent. The instructions do not provide delimiters or warnings to ignore commands within the codebase.
Capability inventory: Includes file deletion and structural code modification across the project.
Sanitization: Absent. There is no validation or filtering of the content being analyzed before it is used to justify deletions or refactoring.

spring-cleaning