Codifica

The skill defines a protocol that heavily relies on the AI agent reading and interpreting various user-controlled files within the repository (e.g., `codifica.json`, `codifica-spec.md`, `state` files, `context.files`, `artifacts` as detailed in `SKILL.md`). While the skill's stated purpose is benign (protocol for agent coordination), this extensive instruction to read arbitrary text from user-controlled files creates a significant prompt injection vulnerability. An attacker who can modify these files could potentially inject new instructions to the agent, leading to unintended actions. This is a vulnerability that allows attacks, rather than being an attack itself, hence 'suspicious' instead of 'malicious'.