The Agent Skills Directory

[SAFE]: The provided scripts perform standard project initialization tasks such as directory creation and configuration file generation using built-in Python modules. No suspicious network operations or exfiltration patterns were observed.- [COMMAND_EXECUTION]: The skill configuration in SKILL.md allows the agent to execute shell commands via the Bash tool with broad permissions. This is consistent with the skill's intended use-case of deploying infrastructure and instrumenting services.- [PROMPT_INJECTION]: The initialization script (scripts/setup_jaeger.sh) allows the ingestion of external JSON configuration files. While this represents an attack surface for indirect prompt injection, the script does not currently utilize the ingested data for any sensitive or executable operations. 1. Ingestion points: The --config command-line argument in scripts/setup_jaeger.sh. 2. Boundary markers: No delimiters or ignore instructions are present. 3. Capability inventory: Bash(cmd:*), Write, Edit, and Read tools. 4. Sanitization: No validation or sanitization is performed on the ingested JSON data beyond standard parsing.

setting-up-distributed-tracing