Deep codebase walkthrough before implementation — trace the full flow, explain architecture, and build understanding.
56
—
Does it follow best practices?
Impact
—
No eval scenarios have been run
Advisory
Suggest reviewing before use
Security
1 medium severity finding. This skill can be installed but you should review these findings before use.
The skill exposes the agent to untrusted, user-generated content from public third-party sources, creating a risk of indirect prompt injection. This includes browsing arbitrary URLs, reading social media posts or forum comments, and analyzing content from unknown websites.
Third-party content exposure detected (high risk: 0.75). The required workflow reads “the ticket (Jira, Linear, etc.)” and then “Read the resulting PNG with the Read tool” after invoking `/devflow:render-diagram`; ticket text is outsider-authored free-form content that can include indirect prompt-injection payloads, which the agent would ingest into the LLM context during Step 1/2.
9556c94
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.