The Agent Skills Directory

[DATA_EXPOSURE]: The skill attempts to read a configuration file at ../../CLAUDE.md to retrieve user preferences regarding valuation methods, IRR thresholds, and discount rates. This is used for contextualizing the analysis within the local environment.
[COMMAND_EXECUTION]: The skill acts as an orchestrator, instructing the agent to execute a series of internal sub-skills including npv-irr-calculation, real-options-analysis, comparable-company-internal, and investment-decision-report to process financial data.
[INDIRECT_PROMPT_INJECTION]: The skill ingests untrusted user data such as project names and financial assumptions through input arguments. While it uses markdown structure to organize this data, it lacks explicit boundary markers or sanitization for these inputs. However, the skill does not possess sensitive capabilities like network exfiltration or arbitrary code execution that would make this surface exploitable.

project-valuation-master