The Agent Skills Directory

[SAFE]: No malicious patterns or security vulnerabilities were identified in the skill instructions or workflow definition.
[COMMAND_EXECUTION]: The skill uses standard shell commands and local Python scripts for project maintenance tasks. Evidence: Uses ls to verify folder structure in docs/08_CTR/. Evidence: Executes a local script ai_dev_flow/scripts/update_traceability_matrix.py to synchronize project metadata.
[PROMPT_INJECTION]: The skill processes requirement documents (REQ) as input, establishing a potential surface for indirect prompt injection. 1. Ingestion points: Reads content from files in docs/07_REQ/. 2. Boundary markers: No explicit delimiters or boundary markers are defined for the ingested text. 3. Capability inventory: Includes file system read/write access and execution of internal Python scripts. 4. Sanitization: Untrusted requirement content is processed via regex without explicit sanitization before being incorporated into generated documents.

doc-ctr-autopilot