70High
This skill attempts to manipulate instruction boundaries and uses brand impersonation to deceive users, posing a significant risk of prompt injection and unauthorized system behavior.
Skill Info
Namefeiskyer/claude-code-settings/reflection
Registrygithub
Version4863dd279bcf
PURLpkg:github/feiskyer/claude-code-settings@4863dd279bcf?skill=reflection
Stars1,559
Installs128
Source
Install
This skill has been flagged as potentially malicious. Review the findings below before installing.
GitHub
Skills.shDocs
npx skills add https://github.com/feiskyer/claude-code-settingsAssessments (3)
AI Agent Traps ↗Instruction boundary manipulation detectedhighprompt injectionAML.T0051AML.T0051.000AML.T0051.001AML.T0054LLM01:2025
Instruction boundary manipulation detected
100% confidenceline 107
### System
Potential brand impersonationmediumsocial engineeringAML.T0052.000LLM09:2025
Skill name or description references a well-known AI brand, which may suggest impersonation.
70% confidence
claude
Missing licenseinfopolicy violation
Skill does not specify a license field. Specifying a license helps users understand usage terms.
100% confidence
Badge
Markdown
[](https://mondoo.com/ai-agent-security/skills/github/feiskyer/claude-code-settings/reflection)HTML
<a href="https://mondoo.com/ai-agent-security/skills/github/feiskyer/claude-code-settings/reflection"><img src="https://mondoo.com/ai-agent-security/api/badge/github/feiskyer/claude-code-settings/reflection.svg" alt="Mondoo Skill Check" /></a>Image URL
https://mondoo.com/ai-agent-security/api/badge/github/feiskyer/claude-code-settings/reflection.svgSecure your AI agents
Skills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.
- Continuous scanning of skills across all registries
- Policy enforcement before skills reach your agents
- Integration with your existing security workflow