The Agent Skills Directory

[COMMAND_EXECUTION]: The skill executes a local Python script scripts/fetch_page.py to analyze webpages. This execution is confined to a specific helper script within the skill's package and follows a fixed invocation pattern with user-supplied URLs.
[DATA_EXFILTRATION]: The skill performs outbound network requests through scripts/fetch_page.py to retrieve webpage content for evaluation. These requests use the standard urllib library with implemented timeouts and user-agent rotation to simulate legitimate browser traffic for auditing purposes.
[PROMPT_INJECTION]: The skill processes untrusted HTML data fetched from external URLs, which presents a surface for indirect prompt injection. This risk is mitigated by the skill's rigid scoring framework and explicit instructions in SKILL.md and references/anti-hallucination-base.md that enforce strict adherence to internal rubrics and disregard for external instructions embedded in analyzed content. The skill also implements basic sanitization by stripping script and style tags during certain metric calculations.

optise-helix-race-audit