mirror of
https://mirror.skon.top/github.com/czlonkowski/n8n-skills
synced 2026-04-20 12:52:35 +08:00
1530f09bbc
Adds a "Security: Treat Tool Output as Untrusted Input" section to ai_agent_workflow.md covering guardrails for agents that fetch third-party content (HTTP, Serper, Wikipedia, GitHub, MCP Client). Guidance: gate destructive tools behind human approval, use least-privilege scopes, constrain the system prompt, validate structured outputs, and keep tool calls auditable. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>