Skip to main content
在 Manus 中运行任何 Skill
一键导入

injection-guard

星标0
分支0
更新时间2026年6月17日 12:22

Generate or audit a prompt-injection defense that satisfies AgenticApps core spec §14 for the project's tech stack. Three subcommands: `init` (greenfield scaffold — detect stacks, materialise the trust-classification enforcement (TS ESLint rule / Go analyzer), the `fenceUntrusted` + canary helpers, the untrusted-input registry, and the attack-matrix regression test behind consent gates, then write the `injection_guard:` metadata block), `scan` (brownfield audit → .injection-scan-report.md; finds tenant-untrusted values reaching prompts without a trust marker, ranked by confidence), and `scan-apply` (apply high-confidence findings — add markers, scaffold missing enforcement assets — with per-file consent). Use when adding or auditing an LLM prompt-building path, tenant-untrusted tagging, prompt fencing, output validation / canary checks, tool-dispatch allowlists, or a §14 prompt-injection regression test in a new or existing service. The shared attack-family corpus and per-stack templates live in ./corpus, ./t

安装

用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。

文件资源管理器
33 个文件
SKILL.md
readonly