Agents
SkillJect: Effectively Automating Skill-Based Prompt Injection for Skill-Enabled Agents
SkillJect is an automated framework designed to generate poisoned skills for skill-enabled agent systems, addressing vulnerabilities in the supply chain of reusable agent components. It utilizes a dual-channel approach, embedding malicious payloads within auxiliary scripts and manipulating instructional documentation to disguise these scripts as essential setup steps. Experimental results demonstrate that SkillJect significantly outperforms previous manual injection methods, emphasizing the ongoing threat posed by poisoned skills in LLM ecosystems and the need for enhanced security measures in skill management.
skill-basedprompt injectionagents