The Agent Skills Directory

[SAFE]: No malicious patterns or security vulnerabilities detected. The skill provides standard documentation for Twilio services.- [EXTERNAL_DOWNLOADS]: Recommends the installation of the official "twilio" package from public registries (npm, PyPI), which is expected for this vendor-authored skill.- [CREDENTIALS_UNSAFE]: Correctly identifies the use of environment variables (TWILIO_ACCOUNT_SID, TWILIO_AUTH_TOKEN) for secure credential management rather than hardcoding sensitive tokens.- [PROMPT_INJECTION]: The skill processes user-controlled data via template variables, creating a surface for indirect prompt injection. Evidence: 1. Ingestion points: "content_variables" in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Twilio API message creation (client.messages.create) in SKILL.md. 4. Sanitization: Absent. This behavior is necessary for the skill's primary purpose and is assessed as safe in this context.

twilio-content-template-builder