The Agent Skills Directory

[COMMAND_EXECUTION]: The brand monitoring logic uses subprocess.run to execute the dnstwist tool for domain permutation and typosquatting analysis.
Evidence: cmd = ["dnstwist", "--registered", "--format", "json", ...] in SKILL.md.
The command is executed as a structured list of arguments without using a shell, mitigating command injection risks.
[EXTERNAL_DOWNLOADS]: The skill interacts with external services to gather threat intelligence.
Evidence: Requests to safebrowsing.googleapis.com, api.twitter.com, and play.google.com in SKILL.md.
Evidence: API calls to the specified target in scripts/agent.py.
All external calls target well-known and trusted service providers or the user-defined target URL.

performing-brand-monitoring-for-impersonation