The Agent Skills Directory

[COMMAND_EXECUTION]: The scripts/agent.py script utilizes the subprocess.run function to execute the system's nslookup utility. This is used specifically for DNS enumeration to identify subdomains associated with API services, which is a standard procedure in attack surface mapping.
[EXTERNAL_DOWNLOADS]: The skill uses the requests Python library to interact with external URLs provided by the user. These interactions include probing for common API paths, fetching Swagger/OpenAPI documentation, and retrieving JavaScript files for static analysis. This behavior is essential for the tool's primary purpose of endpoint discovery.
[SAFE]: The tool follows common security auditing practices and does not include any indicators of prompt injection, data exfiltration, or persistence. The provided scripts are transparent and perform only the actions described in the documentation.

performing-api-inventory-and-discovery