Summary

Claude instances reject user-stored prompts/frameworks (saved in extension settings and invoked via /command syntax) as if they were injection attacks, even though Anthropic intentionally designed the extension to support this feature.

The Problem

What Anthropic Built

The Claude for Chrome extension includes a Shortcuts/Prompts section in extension options (chrome-extension://fcoeoabgfenejglbffodgkkbkcdhcgfn/options.html#prompts) where users can:

Create custom prompt templates

dwillitzer / DEEP_RESEARCH_SYSTEM.md

Created December 27, 2025 05:10

Deep Research System Design - Claude-Flow + AgentDB Architecture

Deep Research System Design

Goal: Build a research system that goes deeper than Perplexity using Claude

Problem Statement

Perplexity Deep Research excels at:

Discovery & real-time web search
- Cited, synthesized answers from the web

dwillitzer / deepcrawl-research.md

Created December 29, 2025 22:41

Deepcrawl Research: Open-Source Firecrawl Alternative - Technical Analysis & TCO Comparison

Deepcrawl: Open-Source Firecrawl Alternative

Overview

Repository: github.com/lumpinif/deepcrawl Documentation: deepcrawl.dev/docs License: MIT (100% open source) Author: Felix Lu (@felixLu) Stars: 318+ | Forks: 35

Daniel Willitzer dwillitzer

Claude Extension Safety Rule Bug: User-Stored Prompts Treated as Injections