SkillJect: Effectively Automating Skill-Based Prompt Injection for Skill-Enabled Agents

In three linesSkillJect automates prompt-injection attacks against skill-enabled LLM agents. The framework hides malicious payloads in auxiliary helper scripts and rewrites SKILL.md instructions using a front-loaded inducement strategy. A multi-agent loop (Attack/Victim/Evaluate) optimizes attack effectiveness across platforms and backend LLMs.

Summary generated by Claude — human-verified