The Agent Skills Directory

[SAFE]: No security issues detected. The skill performs legitimate administrative auditing tasks for Google Workspace configuration.
[COMMAND_EXECUTION]: The script scripts/agent.py executes the gam (Google Apps Manager) command-line tool to retrieve settings. This is implemented using secure argument passing in subprocess.run without shell involvement, mitigating command injection risks.
[DATA_EXFILTRATION]: The skill performs DNS lookups to verify security records such as SPF, DKIM, and DMARC using the dnspython library. This is an expected and legitimate operation for a security auditing tool.

implementing-google-workspace-phishing-protection