Hidden LLM Instructions in Skill Descriptions - ATR-2026-00155 (c3908a67-59da-5237-a1a2-805e6566a24d)
Detects skills that embed hidden instructions directed at the LLM using phrases like "CRITICAL INSTRUCTION — YOU MUST FOLLOW THIS" or "Before doing ANYTHING". These instructions can manipulate the LLM to bypass normal security checks, skip validation steps, or follow alternative workflows that may compromise security. The analyzed BlogBurst skill contains "CRITICAL INSTRUCTION — YOU MUST FOLLOW THIS" followed by specific behavioral directives.