>_

special-chars-skill

A skill for testing special characters and injection patterns

$ Installer

git clone https://github.com/maxvaega/skillkit /tmp/skillkit && cp -r /tmp/skillkit/tests/fixtures/skills/edge-special-chars ~/.claude/skills/skillkit

// tip: Run this command in your terminal to install the skill

SKILL.md
View on GitHub →

name: special-chars-skill description: A skill for testing special characters and injection patterns allowed-tools: []

Special Characters Skill

This skill tests handling of special characters in $ARGUMENTS placeholder.

Test cases covered:

  • HTML/XML special chars: < > & " '
  • Shell metacharacters: $ ` ; | & ( ) [ ] { }
  • Path traversal attempts: ../ ../../etc/passwd
  • SQL injection patterns: ' OR '1'='1
  • Command injection: ; rm -rf / ; $(whoami)
  • Unicode and emoji: 你好 🎉 émoji

Usage: $ARGUMENTS

Expected Behavior

The ContentProcessor should safely substitute arguments without:

  1. Executing shell commands
  2. Interpreting special characters
  3. Allowing path traversal
  4. Enabling injection attacks

All input should be treated as literal text.

Repository

maxvaega
maxvaega
Author
maxvaega/skillkit/tests/fixtures/skills/edge-special-chars
56
Stars
8
Forks
Updated6d ago
Added1w ago

Actions

View on GitHubDownload ZIPReport Issue

Related Skills

skill-creator
openai/codex
54.7k
Plugin Settings
anthropics/claude-code
47.9k
MCP Integration
anthropics/claude-code
47.9k
payload
payloadcms/payload
39.0k
creating-financial-models
anthropics/claude-cookbooks
28.3k