The Agent Skills Directory

[SAFE]: The skill is designed for security operations and follows legitimate patterns for interacting with the Wazuh SIEM platform.
[COMMAND_EXECUTION]: The script scripts/agent.py uses the requests library to communicate with a user-provided Wazuh API URL. It includes logic to handle authentication via JWT tokens and allows for optional TLS verification bypass through the SKIP_TLS_VERIFY environment variable, which is a standard configuration for security lab environments with self-signed certificates.
[DATA_EXFILTRATION]: The script retrieves security telemetry and agent status data from the internal Wazuh manager. This information is used to generate a local JSON report for the user and is not sent to any external or unauthorized domains.
[CREDENTIALS_UNSAFE]: No hardcoded secrets, API keys, or passwords were found in the scripts or documentation. The code correctly utilizes command-line arguments and environment variables for managing credentials.

implementing-endpoint-detection-with-wazuh