The Agent Skills Directory

[DATA_EXPOSURE_AND_EXFILTRATION]: The scripts scripts/agent.py and scripts/process.py read local log files and output analysis results locally. No network operations or credential leaks were found.
[INDIRECT_PROMPT_INJECTION]: The skill handles untrusted data from log files. Ingestion points: scripts/agent.py (parse_splunk_results) and scripts/process.py (parse_logs). Boundary markers: Absent. Capability inventory: Local file read/write (open, json.dump) and markdown report generation. No network or arbitrary execution. Sanitization: Normalizes event fields but does not strictly sanitize log content before reporting, which is typical for diagnostic tools.

detecting-lateral-movement-with-splunk