Browse Source

fix(skills): reinstate scan/hidden trigger vocabulary in prompt-injection-defense

Codex refuter (lane v-t2-refute): the trim dropped both 'scan' and
'hidden' - the canonical ask 'scan for hidden unicode' retained only
the broad 'Unicode' hit. Sole finding across the 22-file trim.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
0xDarkMatter 1 week ago
parent
commit
8bb702759f
1 changed files with 1 additions and 1 deletions
  1. 1 1
      skills/prompt-injection-defense/SKILL.md

+ 1 - 1
skills/prompt-injection-defense/SKILL.md

@@ -1,6 +1,6 @@
 ---
 ---
 name: prompt-injection-defense
 name: prompt-injection-defense
-description: "Defend the agent against adversarial Unicode it obeys but a human can't see: bidi/Trojan Source, tag-char smuggling, zero-width text, homoglyphs. Triggers on: prompt injection, zero-width space, Trojan Source, ASCII smuggling, poisoned CLAUDE.md, MCP tool poisoning, is this file safe."
+description: "Defend the agent against adversarial Unicode it obeys but a human can't see: bidi/Trojan Source, tag-char smuggling, zero-width text, homoglyphs. Triggers on: prompt injection, scan for hidden unicode, hidden characters, zero-width space, Trojan Source, ASCII smuggling, poisoned CLAUDE.md, MCP tool poisoning, is this file safe."
 license: MIT
 license: MIT
 allowed-tools: "Read Edit Write Bash Grep Glob Agent WebFetch"
 allowed-tools: "Read Edit Write Bash Grep Glob Agent WebFetch"
 metadata:
 metadata: