The Agent Skills Directory

No Code (SAFE): The skill consists entirely of Markdown files providing documentation, API references, and configuration patterns. There are no active scripts (Python, JavaScript, etc.) or executable binaries that could be used for malicious purposes.\n- Data Exposure & Exfiltration (SAFE): All examples involving credentials use clear placeholders (e.g., <API_TOKEN>, YOUR_API_KEY_HERE) or refer to secure environment variables. The documentation proactively warns against hardcoding secrets and provides detailed instructions on using the Cloudflare Secrets Store and Wrangler secrets.\n- Prompt Injection (SAFE): No instructions were found that attempt to bypass AI safety guardrails, override agent behavior, or extract system prompts. The content is technical and strictly instructional.\n- External Downloads (SAFE): Links included in the documentation point to official Cloudflare developer domains (developers.cloudflare.com), reputable package registries (npmjs.com, pypi.org), or trusted infrastructure-as-code providers (Terraform, Pulumi).\n- Indirect Prompt Injection (SAFE): The skill does not ingest untrusted data or provide an attack surface for indirect injection. It acts as a passive knowledge base for the agent.

cloudflare-expert