The Agent Skills Directory

[PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it is designed to ingest and analyze untrusted log data. 1. Ingestion points: System and application logs located in {baseDir}/logs/ (referenced in SKILL.md and processed by scripts). 2. Boundary markers: The skill lacks explicit markers or instructions to delimit untrusted log content from agent instructions. 3. Capability inventory: The skill utilizes Bash for forensics and log analysis and can write incident reports. 4. Sanitization: No sanitization or validation of log content is implemented in the provided scripts.
[EXTERNAL_DOWNLOADS]: The skill references documentation from well-known and trusted organizations such as NIST, SANS, and CISA. These links are for informational purposes and do not involve untrusted remote code execution.
[COMMAND_EXECUTION]: The skill defines allowed tools for Bash-based log analysis, forensic investigation, and network tracing, which are appropriate permissions for its stated purpose.

responding-to-security-incidents