The Agent Skills Directory

[SAFE]: No malicious patterns, unauthorized command executions, or data exfiltration attempts were detected. The skill uses internal agent tools to navigate the codebase and interact with documentation.
[PROMPT_INJECTION]: The skill ingests data from local project files like CONTEXT.md and Architectural Decision Records (ADRs) to inform its suggestions. This represents an indirect prompt injection surface where instructions hidden in documentation could theoretically influence the agent's behavior.
Ingestion points: The skill reads CONTEXT.md and ADR files in the docs/adr/ directory during both exploration and design phases.
Boundary markers: No explicit delimiters are used to separate ingested documentation content from the skill's operational instructions.
Capability inventory: The skill is authorized to update the CONTEXT.md file and create new ADR files. It also uses the Agent tool to spawn sub-agents for parallel design exploration.
Sanitization: Ingested content from project files is processed directly without additional escaping or sanitization logic.

improve-codebase-architecture