The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes the Python subprocess module in scripts/agent.py to run pacu commands. These commands are constructed using argument lists which prevents shell injection, and they are restricted to the primary purpose of cloud security auditing.
[EXTERNAL_DOWNLOADS]: The skill relies on the installation of pacu and boto3 via pip. These are well-recognized and reputable tools in the cybersecurity community for AWS security assessments.
[DATA_EXFILTRATION]: While the skill enumerates sensitive account configuration data including IAM policies and resource lists, the data is saved to a local file (pacu_pentest_date.json) and is not transmitted to any external servers.

performing-cloud-penetration-testing-with-pacu