The Agent Skills Directory

[COMMAND_EXECUTION]: The audit script utilizes child_process.execSync to invoke system diagnostic utilities including ss, netstat, and git. These calls are used to inspect network state and repository history for security purposes.
[PROMPT_INJECTION]: The skill processes external files which represents an indirect prompt injection surface.
Ingestion points: The audit.cjs script reads various configuration and code files from the /root/clawd directory.
Boundary markers: None.
Capability inventory: The script uses execSync for system diagnostic commands and fs.chmodSync for file permission hardening.
Sanitization: None.

security-audit