The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes the curl command to facilitate Worker deployments and R2 object storage operations. These calls are performed using spawnSync with an array of arguments, which is a secure method to prevent shell injection vulnerabilities. Temporary files used during the process are created with restricted file permissions (mode: 0o600).
[EXTERNAL_DOWNLOADS]: The scripts communicate with the official Cloudflare API at api.cloudflare.com. These interactions are necessary for the skill's documented functionality and are performed over secure HTTPS connections using the user's provided API token.
[SAFE]: The analysis did not reveal any malicious activity. There are no signs of credential exfiltration to unauthorized domains, prompt injection attempts, or unauthorized persistence mechanisms.

cloudflare-manager