The Agent Skills Directory

[COMMAND_EXECUTION]: Script scripts/run.py invokes the seren CLI utility to manage environment variables and database connectivity. This is a standard operation within the vendor's toolchain to resolve database credentials.
[PROMPT_INJECTION]: The skill exposes a surface for indirect prompt injection by processing external transaction data and reflecting it in generated reports. Ingestion points: Data is retrieved from the wf_transactions and wf_txn_categories tables via scripts/run.py. Boundary markers: Transaction data is aggregated into Markdown tables in scripts/cashflow_builder.py, but the output lacks delimiters to isolate potentially malicious transaction content. Capability inventory: The skill possesses capabilities for command execution via the seren CLI, database operations, and writing to the local filesystem. Sanitization: There is no evidence of sanitization or escaping of the transaction-derived content before it is interpolated into reports.

cash-flow-statement