The Agent Skills Directory

[COMMAND_EXECUTION]: The skill requires the execution of multiple command-line utilities for its primary functions.\n
Examples include age for encryption/decryption, age-keygen for key generation, curl for fetching keys, and tar for archiving directories.\n
Installation steps mention various system package managers like apt, brew, pacman, and dnf, which typically require administrative privileges.\n- [EXTERNAL_DOWNLOADS]: Fetches software and keys from external network sources.\n
Provides links to download the age binary directly from dl.filippo.io, which is the official distribution domain for the tool author.\n
Uses curl to fetch public SSH keys from github.com for use as encryption recipients.\n- [DATA_EXFILTRATION]: Accesses sensitive local file paths as part of the decryption workflow.\n
Specifically references accessing SSH private keys at ~/.ssh/id_ed25519 to decrypt files.\n- [PROMPT_INJECTION]: Contains a surface for indirect prompt injection through processed file content.\n
Ingestion points: Decrypts and reads the content of arbitrary files from disk or standard input (File: SKILL.md).\n
Boundary markers: No explicit markers or instructions are provided to the agent to ignore potentially malicious commands within the decrypted plaintext output.\n
Capability inventory: The skill has access to shell command execution (subprocess), file system read/write, and network access via curl.\n
Sanitization: The skill does not implement sanitization or verification of the decrypted data before it is processed by the agent.

age-file-encryption