The Agent Skills Directory

[SAFE]: The skill follows standard cybersecurity practices for threat intelligence management. It includes logic for IOC validation, enrichment, and confidence decay using common algorithms.
[PROMPT_INJECTION]: The skill processes untrusted external data (text and CSV files), which constitutes a potential surface for indirect prompt injection if the resulting output is processed by an AI agent without further sanitization.
Ingestion points: Data enters the system via scripts/agent.py (extract_iocs, ingest_ioc_feed) and scripts/process.py (import-iocs), which read from user-provided file paths.
Boundary markers: Absent. The scripts output extracted data in a structured JSON format but do not include specific delimiters or instructions to the consuming agent to ignore embedded commands.
Capability inventory: The scripts are restricted to local file system operations (reading input files and writing JSON databases) and do not implement network operations or shell execution.
Sanitization: No content validation or escaping is applied to the data ingested from external files beyond regex-based indicator extraction.

performing-indicator-lifecycle-management