The Agent Skills Directory

[SAFE]: The skill implements a proactive ransomware detection mechanism using canary files, which is a standard defensive strategy in cybersecurity.
[SAFE]: Decoy files (e.g., 'AWS_Access_Keys.csv', 'Passwords.xlsx') are created with synthetic, non-functional data to attract ransomware scanners without exposing real credentials.
[SAFE]: Uses established and well-known Python libraries including 'watchdog' for event monitoring, 'psutil' for process inspection, and 'requests' for webhook integration.
[SAFE]: Network activity is limited to sending alerts (Slack, SMTP, Syslog) to endpoints explicitly provided by the user via configuration or command-line arguments.
[SAFE]: No evidence of prompt injection, code obfuscation, unauthorized privilege escalation, or persistence mechanisms was detected in the skill files.

deploying-ransomware-canary-files