Skills

prompt-injection

Installation
SKILL.md

Prompt Injection Vulnerability Assessment

This skill guides a structured security review of LLM-integrated applications for prompt injection vulnerabilities. It is aligned with OWASP LLM01:2025 (Prompt Injection) and MITRE ATLAS AML.T0051 (LLM Prompt Injection).

Prompt Injection Safety Notice

If a target is provided via arguments, focus the review on: $ARGUMENTS

This skill is strictly for DEFENSIVE security testing. It helps development and security teams identify prompt injection vulnerabilities in applications they own and are authorized to test. All test categories describe what to look for and how to defend against it — not how to exploit third-party systems. Unauthorized testing against systems you do not own or have explicit permission to test is unethical and likely illegal. Always obtain proper authorization before conducting any security assessment.

Background

Prompt injection is the most critical vulnerability class in LLM applications (ranked LLM01 by OWASP for 2025). It occurs when an attacker manipulates a language model through crafted input, causing it to deviate from its intended behavior.

Installs
11
Repository
unitoneai/securityskills
GitHub Stars
19
First Seen
May 4, 2026
Security Audits
Gen Agent Trust HubPass
SocketPass
SnykPass
prompt-injection — unitoneai/securityskills