The Agent Skills Directory

[COMMAND_EXECUTION]: The script scripts/extract.py utilizes the subprocess.run function to execute the pdftotext system utility. The command arguments are constructed using file paths that have been sanitized through a hashing and slugging process (safe_slug), which effectively mitigates the risk of command injection through malicious file naming.
[EXTERNAL_DOWNLOADS]: The skill downloads PDF files from remote URLs using the urllib.request module. These URLs can be provided via command-line arguments, text files, or JSON configuration templates, allowing the agent to fetch content from any accessible remote source.
[PROMPT_INJECTION]: The skill is designed to ingest and process text from external PDF documents, which serves as a surface for indirect prompt injection. 1. Ingestion points: PDF content downloaded by scripts/extract.py from remote URLs. 2. Boundary markers: Absent in the extraction script. 3. Capability inventory: subprocess.run, shutil.rmtree, Path.write_text, urlopen. 4. Sanitization: Absent for extracted text content, though present for local file paths.
[DATA_EXFILTRATION]: The skill performs network operations to fetch data from external domains. While the current implementation focuses on downloading content, the ability to make requests to arbitrary domains and process the retrieved data represents a network security surface that should be monitored.

daily-press-scanner