The Agent Skills Directory

[PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection as it requires the agent to ingest potentially untrusted external source code and test logs. A malicious actor could embed instructions in comments or code structures to influence the agent's patch generation logic or validation actions. Ingestion points: Source code context and test outputs consumed during the bug classification and drafting phases. Boundary markers: The prompt instructions do not include the use of delimiters or protective tagging to separate untrusted data from the agent's core instructions. Capability inventory: The skill utilizes file system modification capabilities to apply patches and command execution to run compilers and test suites. Sanitization: There is no requirement for the agent to sanitize or validate the content of the files it is analyzing before execution.

bug-to-patch-generator