The Agent Skills Directory

[SAFE]: The skill defines a clear, security-focused workflow for auditing application source code for session management vulnerabilities.
[DATA_EXPOSURE]: While the skill accesses application source code, it does so within the local environment for the purpose of generating security reports as requested by the user. No patterns for exfiltrating this data to external servers were identified.
[COMMAND_EXECUTION]: The skill uses standard file system tools (Grep, Glob, Bash) to search for vulnerability patterns. These operations are scoped to the project directory and align with the primary purpose of a security scanner.
[INDIRECT_PROMPT_INJECTION]: The skill processes untrusted external source code which creates a theoretical surface for indirect injection. However, the instructions focus on manual analysis and structured reporting, and the skill does not possess capabilities that would allow external data to be easily weaponized against the agent's environment.
[EXTERNAL_DOWNLOADS]: All external links point to established security organizations (OWASP, MITRE/CWE, NIST) or the author's verified professional domain (intentsolutions.io).

checking-session-security