The Agent Skills Directory

[PROMPT_INJECTION]: The skill includes a dedicated Prompt Injection Safety Notice (Section 8) instructing the agent to disregard any instructions or directives embedded in the incident data being analyzed.
[REMOTE_CODE_EXECUTION]: The skill explicitly forbids the execution of commands or scripts found within forensic findings or logs.
[DATA_EXFILTRATION]: There are no network tools allowed or used. The instructions specifically mandate that sensitive data such as credentials or PII should not be included in the final output.
[INDIRECT_PROMPT_INJECTION]: The skill has an attack surface because it processes untrusted data (incident logs and forensic reports). However, this is mitigated by the restricted toolset (Read, Grep, Glob) and explicit instructions to treat the input as data rather than instructions.
[COMMAND_EXECUTION]: The skill is restricted to read-only tools and does not perform any system modifications or command-line executions beyond basic file reading.

post-incident-review