The Agent Skills Directory

[SAFE]: The skill implements security assessment functionality using official Google Cloud client libraries and command-line tools. No suspicious patterns, such as credential harvesting or unauthorized network connections, were detected in the provided code or instructions.
[EXTERNAL_DOWNLOADS]: Recommends the installation of scoutsuite and official Google Cloud client libraries. These are established, well-known resources from trusted providers (NCC Group and Google) used for cloud security posture management.
[COMMAND_EXECUTION]: Uses gcloud and gsutil commands to query project configurations. These operations are restricted to read-only security auditing tasks and do not involve unsanitized input or privilege escalation attempts.
[DATA_EXFILTRATION]: While the skill accesses sensitive cloud configuration data (IAM policies, network rules), it does so for the explicit purpose of security assessment. The data is processed locally and output to the user's terminal; no hidden exfiltration to external domains was found.

performing-gcp-security-assessment-with-forseti