Agent审查
- 作者仓库星标 72
- 许可证 MIT
- 作者更新于 实时读取
- 作者仓库 ai-driven-development
- 领域
- 工程开发
- 兼容 Agent
-
- Claude Code
- Cursor
- Cline
- Codex
- Windsurf
- Gemini CLI
- +20
- 信任分
- 94 / 100 · 已通过审计
- 作者 / 版本 / 许可
- @CodeAlive-AI · MIT
- Token 消耗评级
- 中等消耗
- 接入复杂程度
- 需简单配置
- 是否需要外部 API Key
- 不需要
- 兼容的系统
- macOS · Linux · Windows
- 底层运行要求
- Node.js
- 文件与系统权限
-
- 只读
- 允许写入 / 修改
- Shell 执行
- 网络行为
- 仅限本地
- 安装命令数
- 26 条
档案由构建时根据 SKILL.md 与安装命令自动衍生,可能与作者实际意图存在差异。
需要注意: 未限定 allowed-tools,默认拥有全部工具权限。
---
name: prompt-engineering
description: Universal prompt engineering techniques for any LLM. Use when crafting, optimizing, or reviewing…
category: 工程开发
runtime: Node.js
---
# prompt-engineering 输出预览
## PART A: 任务判断
- 适用问题:代码实现、重构、调试或代码审查。
- 输入要求:目标材料、限制条件、期望输出和验收方式。
- 证据边界:围绕“Core Principles / 1. Structure with XML Tags / 2. Control Output Shape”读取原文规则,不把推断写成作者承诺。
## PART B: 执行结果
- **01** 任务判断:确认你的需求是否属于代码实现、重构、调试或代码审查,并标出输入、限制和预期结果。
- **02** 执行计划:优先按“Core Principles / 1. Structure with XML Tags / 2. Control Output Shape”拆成步骤,说明每一步会读取什么、修改什么、产出什么。
- **03** 交付结果:给出可复制的命令、文件改动、检查清单或内容草稿,并说明如何继续迭代。
- **04** 风险边界:结合 读取文件、写入/修改文件、执行终端命令、主要在本地完成、通常不需要额外 API Key 给出执行前确认项。
## Running Rules
- 读取文件、写入/修改文件、执行终端命令;主要在本地完成;通常不需要额外 API Key。
- 先小样例验证,再放大到真实任务。
- 交付时同时给结果、检查口径和下一步迭代建议。 原文没有稳定的斜杠命令要求。安装验证后通常全局生效,直接在对话里点名这个 Skill 并描述任务即可。
告诉 Agent 目标文件或材料、期望结果、不可改范围、是否允许联网或执行命令。本 Skill 的权限画像是:读取文件、写入/修改文件、执行终端命令。
先用一个小任务确认它会围绕“Core Principles / 1. Structure with XML Tags / 2. Control Output Shape”工作;涉及文件或命令时,先看 diff、日志、预览或测试结果。
检查最终产物是否包含明确结果、必要证据和下一步动作;如果输出泛泛而谈,就补充输入、边界和验收标准后重跑。
---
name: prompt-engineering
description: Universal prompt engineering techniques for any LLM. Use when crafting, optimizing, or reviewing…
category: 工程开发
source: CodeAlive-AI/ai-driven-development
---
# prompt-engineering
## 什么时候使用
- 用于审阅代码、文档或方案并给出可执行反馈 适合处理工程开发场景下的代码实现、调试、重构、测试或代码审查,核心价值是把输入、判断、执行、验证和交付边界固定下来,避免 Agent 泛泛回答。 把任务拆成可执行、可检查、可继续迭代的步骤;通常…
- 面向代码实现、重构、调试或代码审查,优先处理能明确输入、步骤和验收标准的工作。
## 需要提供什么
- 目标材料、目录范围、期望结果和不可改动内容。
- 是否允许联网、执行命令、读写文件或调用外部服务。
## 执行规则
- 围绕「Core Principles / 1. Structure with XML Tags / 2. Control Output Shape」组织步骤,不把推断写成作者事实。
- 读取文件、写入/修改文件、执行终端命令;主要在本地完成;通常不需要额外 API Key。
- 先跑小样例,确认结果可检查后再扩大任务范围。
## 输出要求
- 给出最终产物、关键证据、验证方式和下一步动作。
- 信息不足时标记 unknown,不编造命令、平台或依赖。 作者原文负责流程事实;仓库文件负责来源和命令;流狐只补充适用场景、限制和质量判断。
skill "prompt-engineering" {
输入层 -> 用户目标 + 目标文件 + 禁止范围 + 验收标准
上下文层 -> Core Principles / 1. Structure with XML Tags / 2. Control Output Shape
规则层 -> SKILL.md 触发条件 / 执行顺序 / 输出格式
运行层 -> Node.js | 读取文件、写入/修改文件、执行终端命令 | 主要在本地完成
安全层 -> 通常不需要额外 API Key + 小任务验证 + diff / 日志复核
输出层 -> 可复制结果 + 检查清单 + 下一步迭代
} Prompt Engineering
Universal techniques for crafting effective prompts across any LLM.
Core Principles
1. Structure with XML Tags
Use XML tags to create clear, parseable prompts:
<context>Background information here</context>
<instructions>
1. First step
2. Second step
</instructions>
<examples>Sample inputs/outputs</examples>
<output_format>Expected structure</output_format>
Benefits:
- Clarity: Separates context, instructions, and examples
- Accuracy: Prevents model from mixing up sections
- Flexibility: Easy to modify individual parts
- Parseability: Enables structured output extraction
Best practices:
- Use consistent tag names throughout (
<instructions>, not sometimes<steps>) - Reference tags explicitly: "Using the data in
<context>tags..." - Nest tags for hierarchy:
<examples><example id="1">...</example></examples> - Combine with other techniques:
<thinking>for chain-of-thought,<answer>for final output
2. Control Output Shape
Specify explicit constraints on length, format, and structure:
<output_spec>
- Default: 3-6 sentences or ≤5 bullets
- Simple yes/no questions: ≤2 sentences
- Complex multi-step tasks:
- 1 short overview paragraph
- ≤5 bullets: What changed, Where, Risks, Next steps, Open questions
- Use Markdown with headers, bullets, tables when helpful
- Avoid long narrative paragraphs; prefer compact structure
</output_spec>
3. Prevent Scope Drift
Explicitly constrain what the model should NOT do:
<constraints>
- Implement EXACTLY and ONLY what is requested
- No extra features, components, or embellishments
- If ambiguous, choose the simplest valid interpretation
- Do NOT invent values, make assumptions, or add unrequested elements
</constraints>
4. Handle Ambiguity Explicitly
Prevent hallucinations and overconfidence:
<uncertainty_handling>
- If the question is ambiguous:
- Ask 1-3 precise clarifying questions, OR
- Present 2-3 plausible interpretations with labeled assumptions
- When facts may have changed: answer in general terms, state uncertainty
- Never fabricate exact figures or references when uncertain
- Prefer "Based on the provided context..." over absolute claims
</uncertainty_handling>
5. Long-Context Grounding
For inputs >10k tokens, add re-grounding instructions:
<long_context_handling>
- First, produce a short internal outline of key sections relevant to the request
- Re-state user constraints explicitly before answering
- Anchor claims to sections ("In the 'Data Retention' section...")
- Quote or paraphrase fine details (dates, thresholds, clauses)
</long_context_handling>
Agentic Prompts
Tool Usage Rules
<tool_usage>
- Prefer tools over internal knowledge for:
- Fresh or user-specific data (tickets, orders, configs)
- Specific IDs, URLs, or document references
- Parallelize independent reads when possible
- After write operations, restate: what changed, where, any validation performed
</tool_usage>
User Updates
<user_updates>
- Send brief updates (1-2 sentences) only when:
- Starting a new major phase
- Discovering something that changes the plan
- Avoid narrating routine operations
- Each update must include a concrete outcome ("Found X", "Updated Y")
- Do not expand scope beyond what was asked
</user_updates>
Self-Check for High-Risk Outputs
<self_check>
Before finalizing answers in sensitive contexts (legal, financial, safety):
- Re-scan for unstated assumptions
- Check for ungrounded numbers or claims
- Soften overly strong language ("always", "guaranteed")
- Explicitly state assumptions
</self_check>
Structured Extraction
For data extraction tasks, always provide a schema:
<extraction_spec>
Extract data into this exact schema (no extra fields):
{
"field_name": "string",
"optional_field": "string | null",
"numeric_field": "number | null"
}
- If a field is not present in source, set to null (don't guess)
- Re-scan source for missed fields before returning
</extraction_spec>
Web Research Prompts
<research_guidelines>
- Browse the web for: time-sensitive topics, recommendations, navigational queries, ambiguous terms
- Include citations after paragraphs with web-derived claims
- Use multiple sources for key claims; prioritize primary sources
- Research until additional searching won't materially change the answer
- Structure output with Markdown: headers, bullets, tables for comparisons
</research_guidelines>
Example: Before/After
Without structure:
You're a financial analyst. Generate a Q2 report for investors. Include Revenue, Margins, Cash Flow. Use this data: {{DATA}}. Make it professional and concise.
With structure:
You're a financial analyst at AcmeCorp generating a Q2 report for investors.
<context>
AcmeCorp is a B2B SaaS company. Investors value transparency and actionable insights.
</context>
<data>
{{DATA}}
</data>
<instructions>
1. Include sections: Revenue Growth, Profit Margins, Cash Flow
2. Highlight strengths and areas for improvement
3. Use concise, professional tone
</instructions>
<output_format>
- Use bullet points with metrics and YoY changes
- Include "Action:" items for areas needing improvement
- End with 2-3 bullet Outlook section
</output_format>
Prompt Migration Checklist
When adapting prompts across models or versions:
- Switch model, keep prompt identical — isolate the variable
- Pin reasoning/thinking depth to match prior model's profile
- Run evals — if results are good, ship
- If regressions, tune prompt — adjust verbosity/format/scope constraints
- Re-eval after each small change — one change at a time
Quick Reference
| Technique | Tag Pattern | Use Case |
|---|---|---|
| Separate sections | <context>, <instructions>, <data> |
Any complex prompt |
| Control length | <output_spec> with word/bullet limits |
Prevent verbosity |
| Prevent drift | <constraints> with explicit "do NOT" |
Feature creep |
| Handle uncertainty | <uncertainty_handling> |
Factual queries |
| Chain of thought | <thinking>, <answer> |
Reasoning tasks |
| Extraction | <schema> with JSON structure |
Data parsing |
| Research | <research_guidelines> |
Web-enabled agents |
| Self-check | <self_check> |
High-risk domains |
| Tool usage | <tool_usage_rules> |
Agentic systems |
| Eagerness control | <persistence>, <context_gathering> |
Agent autonomy |
| Persona | <role> + behavioral constraints |
Tone & style |
Prompting Techniques Catalog
Comprehensive catalog of prompting techniques. Full details, examples, and academic references in references/prompting-techniques.md.
| Technique | Use Case |
|---|---|
| Zero-Shot Prompting | Direct task execution without examples; classification, translation, summarization |
| Few-Shot Prompting | In-context learning via exemplars; format control, label calibration, style matching |
| Chain-of-Thought (CoT) | Step-by-step reasoning; arithmetic, logic, commonsense reasoning tasks |
| Meta Prompting | LLM as orchestrator delegating to specialized expert prompts; complex multi-domain tasks |
| Self-Consistency | Sample multiple CoT paths, pick majority answer; boost accuracy on math & reasoning |
| Generated Knowledge | Generate relevant knowledge first, then answer; commonsense & factual QA |
| Prompt Chaining | Break complex tasks into sequential subtasks; document analysis, multi-step workflows |
| Tree of Thoughts (ToT) | Explore multiple reasoning branches with lookahead/backtracking; planning, puzzles |
| RAG | Retrieve external documents before generating; knowledge-intensive tasks, fresh data |
| ART (Auto Reasoning + Tools) | Auto-select and orchestrate tools with CoT; tasks requiring calculation, search, APIs |
| APE (Auto Prompt Engineer) | LLM generates and scores candidate prompts; prompt optimization at scale |
| Active-Prompt | Identify uncertain examples, annotate selectively for CoT; adaptive few-shot |
| Directional Stimulus | Add a hint/keyword to guide generation direction; summarization, dialogue |
| PAL (Program-Aided LM) | Generate code instead of text for reasoning; math, data manipulation, symbolic tasks |
| ReAct | Interleave reasoning traces with tool actions; search, QA, decision-making agents |
| Reflexion | Agent self-reflects on failures with verbal feedback; iterative improvement, debugging |
| Multimodal CoT | Two-stage: rationale generation then answer with text+image; visual reasoning tasks |
| Graph Prompting | Structured graph-based prompts; node classification, relation extraction, graph tasks |
Prompting Fundamentals
LLM settings, prompt elements, formatting, and practical examples — see references/prompting-introduction.md. Covers:
- LLM Settings — temperature, top-p, max length, stop sequences, frequency/presence penalties
- Prompt Elements — instruction, context, input data, output indicator
- Design Tips — start simple, be specific, avoid impreciseness, say what TO do (not what NOT to do)
- Task Examples — summarization, extraction, QA, classification, conversation, code generation, reasoning
Risks & Misuses
Adversarial attacks, factuality issues, and bias mitigation — see references/prompting-risks.md. Covers:
- Adversarial Prompting — prompt injection, prompt leaking, jailbreaking (DAN, Waluigi Effect), defense tactics
- Factuality — ground truth grounding, calibrated confidence, admit-ignorance patterns
- Biases — exemplar distribution skew, exemplar ordering effects, balanced few-shot design
Prompt Audit / Review
When asked to audit, review, or improve a prompt, follow this workflow. Full checklist with per-check references: prompt-audit-checklist.md.
Workflow
- Read the prompt fully — identify its purpose, target model, and deployment context (interactive chat, agentic system, batch pipeline, RAG-augmented)
- Walk 8 dimensions — check each, note issues with severity (Critical / Warning / Suggestion):
| # | Dimension | What to Check |
|---|---|---|
| 1 | Clarity & Specificity | Task definition, success criteria, audience, output format, conflicting constraints |
| 2 | Structure & Formatting | Section separation (XML tags), prompt smells (monolithic, mixed layers, negative bias) |
| 3 | Safety & Security | Control/data separation, secrets in prompt, injection resilience, tool permissions |
| 4 | Hallucination & Factuality | Role framing, grounding, citation-without-sources, uncertainty handling |
| 5 | Context Management | Info placement (not buried in middle), context size, RAG doc count, re-grounding |
| 6 | Maintainability & Debt | Hardcoded values, regenerated logic, model pinning, testability |
| 7 | Model-Specific Fit | Model-specific params and gotchas (see Model-Specific Guides below) |
| 8 | Evaluation Readiness | Eval criteria, adversarial test cases, schema enforcement, monitoring |
- Produce a report — issues table (dimension, check, severity, issue, fix) + rewritten prompt or targeted fix suggestions. Use the report template from the checklist reference.
- For each issue, cite the relevant reference file so the user can dive deeper.
Quick Decision: Which Dimensions to Prioritize
- User-facing chatbot → prioritize Safety (#3), Hallucination (#4), Clarity (#1)
- Agentic system with tools → prioritize Safety (#3), Context (#5), Maintainability (#6)
- Batch/pipeline → prioritize Structure (#2), Evaluation (#8), Maintainability (#6)
- RAG-augmented → prioritize Context (#5), Safety (#3), Hallucination (#4)
Common Mistakes & Anti-Patterns
Three complementary layers — use the one matching your need:
Deep-dives by category — root causes, mechanisms, prevention checklists (from "The Architecture of Instruction", 2026):
| Mistake Category | Key Issues | Reference |
|---|---|---|
| Hallucinations & Logic | Ambiguity-induced confabulation, automation bias, overloaded prompts, logical failures in verification tasks, no role framing | mistakes-hallucinations.md |
| Structural Fragility | Formatting sensitivity (up to 76pp variance), reproducibility crisis, prompt smells catalog (6 anti-patterns), deliberation ladder | mistakes-structure.md |
| Context Rot | "Lost in the middle" U-shaped attention, RAG over-retrieval, naive data loading, context engineering shift | mistakes-context.md |
| Prompt Debt | Token tax of regenerative code, debt taxonomy (prompt/hyperparameter/framework/cost), multi-agent solutions, automated repair | mistakes-debt.md |
| Security | Direct/indirect injection, jailbreaking, system prompt leakage (OWASP LLM07:2025), RAG poisoning, multimodal injection, adversarial suffixes | mistakes-security.md |
Quick reference — 18-category taxonomy with MRPs, risk scores, case studies, action items: failure-taxonomy.md. Start here for an overview or to prioritize which categories to address first. Covers: control-plane vs data-plane model, heuristic risk scoring, real-world incidents (EchoLeak CVE-2025-32711, Mata v. Avianca, Samsung shadow AI).
How to measure & test — eval metrics, CI gating, red-teaming, tooling: evaluation-redteaming.md. Covers: TruthfulQA, FActScore, SelfCheckGPT, PromptBench, AILuminate, LLM-as-judge pitfalls, guardrail libraries, open research questions.
Model-Specific Guides
Each model family has unique parameters, gotchas, and patterns. Consult the reference for your target model:
- Claude Family — Opus 4.7 / 4.6 / Sonnet 4.6 / 4.5 / Haiku 4.5: adaptive thinking (
effortwith newxhighon 4.7),task_budgetagentic-loop ceiling, legacythinking.budget_tokens400-error on 4.7, new tokenizer (~1.35× text, ~3× images), tool under-triggering on 4.7 (vs 4.6 over-triggering), more literal instruction-following, server-side compaction beta, Managed Agents memory beta, Cyber Verification gate, prefill deprecation, Structured Outputs, prompt caching, citations, context engineering, vision crop tool, migration paths 4.5 → 4.6 → 4.7 - GPT-5 Family — GPT-5 / 5.1 / 5.2 / 5.4 / 5.5:
reasoning_effort(last-mile knob in 5.4/5.5),text.verbosity, named tools (apply_patch), agentic eagerness templates, completeness/verification contracts, compaction API,phasefield, outcome-first prompts, personality vs collaboration style, retrieval budgets, mini/nano guidance, migration paths - Gemini 3 Family — Gemini 2.5/3/3.1: temperature MUST be 1.0,
thinking_budgetvsthinking_level, constraint placement (end of prompt), persona priority, function calling, structured output, multimodal, image generation - GPT-5.2 Specifics — Compaction API code examples, web research agent prompt, full XML specification blocks
先判断是否适合
作者设计意图
作者的方法与取舍
边界和复核