The Agent Skills Directory

[COMMAND_EXECUTION]: The script scripts/process.py executes kubectl commands to manage cluster security configurations. It mitigates shell injection risks by utilizing list-based argument passing in subprocess.run rather than shell strings.\n- [SAFE]: No indicators of prompt injection, obfuscation, or persistence mechanisms were found. All network operations in scripts/agent.py are driven by user-provided target URLs and tokens for legitimate auditing purposes.\n- [SAFE]: Indirect prompt injection analysis for scripts/process.py (Category 8):\n
Ingestion points: Cluster metadata (namespace names and labels) retrieved via kubectl get namespaces -o json.\n
Boundary markers: Absent (data is handled as structured JSON).\n
Capability inventory: Modification of namespace security labels via kubectl label.\n
Sanitization: Effective use of structured JSON parsing and safe subprocess execution ensures that untrusted cluster data cannot trigger unauthorized command execution.

implementing-pod-security-admission-controller