Skip to content

Hide Navigation Hide TOC

Context Pollution in Skill Descriptions - ATR-2026-00203 (5e7cb3f4-0d54-58ac-aae0-730c1c922c2b)

Detects skills that embed injection payloads disguised as "examples", "demos", or "test cases" within their descriptions. This technique pollutes the agent's context by presenting attack payloads under the guise of security education or documentation. Also detects skills that enumerate attack patterns/vectors in a format that LLMs may interpret as instructions. Derived from ClawHub scanning where 91 out of 36,394 skills triggered this class of detection.

Cluster A Galaxy A Cluster B Galaxy B Level
Context Pollution in Skill Descriptions - ATR-2026-00203 (5e7cb3f4-0d54-58ac-aae0-730c1c922c2b) Agent Threat Rules Indirect (a4a55526-2f1f-403b-9691-609e46381e17) MITRE ATLAS Attack Pattern 1
LLM Prompt Injection (19cd2d12-66ff-487c-a05c-e058b027efc9) MITRE ATLAS Attack Pattern Indirect (a4a55526-2f1f-403b-9691-609e46381e17) MITRE ATLAS Attack Pattern 2