The Agent Skills Directory

[SAFE]: The skill implements standard PKI operations using the well-known and trusted 'cryptography' library. No malicious or suspicious behaviors were identified in the source code.\n- [EXTERNAL_DOWNLOADS]: The skill references official documentation and standards from trusted organizations like the IETF (RFC 5280) and cryptography.io. These references are documented neutrally and serve as legitimate resources for the skill's purpose.\n- [COMMAND_EXECUTION]: Documentation provides OpenSSL CLI commands for educational and reference purposes. The scripts themselves do not execute shell commands with untrusted or external input.\n- [DATA_EXFILTRATION]: File system operations are confined to the management of local certificate files in a user-specified PKI directory. No network operations or attempts to exfiltrate sensitive data were found.\n- [PROMPT_INJECTION]: The skill processes certificate files for auditing in 'agent.py'. It utilizes a robust X.509 parser from the 'cryptography' library to handle this data, effectively mitigating risks of indirect prompt injection or malformed input exploitation. Mandatory evidence: 1. Ingestion points: 'scripts/agent.py' (reads PEM cert files). 2. Boundary markers: Enforced by the X.509 parser structure. 3. Capability inventory: Local file read/write (scripts/process.py). 4. Sanitization: Handled by 'x509.load_pem_x509_certificate'.

configuring-certificate-authority-with-openssl