Expense Report Pro

The Expense Report Pro skill is a well-structured tool for managing financial data with a strong emphasis on security. Key safety features include explicit prompt injection defenses in SKILL.md to prevent the agent from executing commands found in receipts, restrictive file permissions (chmod 600/700) established in SETUP-PROMPT.md, and robust input validation and HTML escaping in the PDF generation script (generate-expense-report.py). The use of Playwright for rendering reports is mitigated by disabling JavaScript execution, and the code follows best practices for local data handling without evidence of exfiltration or malicious intent.