The Agent Skills Directory

[SAFE]: The skill is composed entirely of Markdown instructions and structured templates. It contains no executable scripts, binaries, or automated code execution patterns.
[DATA_EXPOSURE]: The skill accesses ../../CLAUDE.md to retrieve project-specific audit definitions. This is a local file reference for context setting and does not involve network operations, credential harvesting, or access to sensitive system paths (e.g., .ssh, .aws).
[PROMPT_INJECTION]: The instructions are strictly procedural and focused on audit methodology. There are no attempts to override agent behavior, bypass safety filters, or extract system prompts.
[COMMAND_EXECUTION]: No shell commands, subprocess calls, or privilege escalation techniques are present in the skill.

annual-audit-planning