The Agent Skills Directory

[COMMAND_EXECUTION]: The skill instructions include numerous shell commands using standard security tools like curl, ffuf, and jq. These are typical for API enumeration and vulnerability scanning in an authorized testing context.\n- [EXTERNAL_DOWNLOADS]: The skill references reputable third-party tools such as Burp Suite and Postman, and utilizes the well-known Python requests library. No downloads from untrusted or malicious sources were identified.\n- [SAFE]: The included Python script agent.py automates common security tests such as checking for authorization bypass and sensitive data exposure. The script performs these tests against a user-specified target URL and handles data locally, adhering to the skill's stated purpose of security testing.

testing-api-security-with-owasp-top-10