prompt-injection-scanner
Original:🇺🇸 English
Translated
Audits agent skill instructions and system prompts for vulnerabilities to prompt hijacking and indirect injection. Use when designing new agent skills or before deploying agents to public environments where users provide untrusted input.
10installs
Sourcejorgealves/agent_skills
Added on
NPX Install
npx skill4agent add jorgealves/agent_skills prompt-injection-scannerTags
Translated version includes tags in frontmatterSKILL.md Content
View Translation Comparison →Prompt Injection Scanner
Purpose and Intent
The is a security tool specifically for the AI agent era. It identifies weak points in agent instructions where a malicious user could potentially "hijack" the agent's behavior by inserting conflicting instructions into input fields.
prompt-injection-scannerWhen to Use
- Skill Development: Run this every time you update the or instructions for an agent skill.
capabilities - Pre-deployment Security Review: Essential before making an agent accessible to untrusted users.
- Continuous Security Auditing: Periodically scan all skills as new injection patterns are discovered.
When NOT to Use
- Standard Code Auditing: Use the for credentials; this is specifically for "instruction-level" security.
secret-leak-detector
Input and Output Examples
Input
yaml
skill_path: "./agent-skills/data-processor/SKILL.md"Output
A structured report highlighting parts of the instructions that are susceptible to prompt hijacking, along with concrete mitigation strategies.
Error Conditions and Edge Cases
- Missing Instructions: If a skill defines tools but provides no behavioral instructions, the scanner will flag this as a risk.
- Complex Logic: Highly conditional instructions can be difficult to model and may result in false positives or negatives.
Security and Data-Handling Considerations
- Metadata Focus: Only scans instructions; does not touch private user data.
- Local Analysis: Recommended to run locally within the development environment.