The Agent Skills Directory

[PROMPT_INJECTION]: The skill processes untrusted data from GitHub pull requests, creating a risk surface for indirect prompt injection.\n
Ingestion points: Data enters the workflow through gh pr view and gh pr diff commands as described in SKILL.md.\n
Boundary markers: The instructions do not define delimiters or specific warnings to prevent the agent from executing instructions potentially hidden within the reviewed code.\n
Capability inventory: The skill has the ability to post comments and reviews back to the repository using gh api.\n
Sanitization: No sanitization, escaping, or validation of the PR content is performed before processing.

gh-review-suggestions