The Agent Skills Directory

[PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface because it is designed to ingest and process data from external sources during the co-authoring workflow. • Ingestion points: Content is fetched from user-provided files, links, and integrations with messaging and document storage platforms (e.g., Slack, Google Drive) as described in SKILL.md. • Boundary markers: The instructions do not specify the use of delimiters or specific warnings when processing external data to prevent command obedience. • Capability inventory: The skill utilizes create_file and str_replace to manage document drafts and can invoke sub-agents for testing. • Sanitization: No explicit sanitization or validation logic is provided for the external data ingested. This surface is intrinsic to the skill's primary purpose.
[COMMAND_EXECUTION]: The skill performs file system operations using create_file and str_replace to manage document drafts, which is a standard capability required for its stated purpose.

doc-coauthoring