The Agent Skills Directory

[SAFE]: The skill defines tools for standard AWS STS operations such as identity verification and role management. All operations are legitimate administrative functions for managing AWS environments.
[COMMAND_EXECUTION]: The skill enables execution of AWS STS commands through the STSTool interface. This includes high-privilege operations such as 'AssumeRole' and 'GetFederationToken', which allow the agent to obtain temporary security credentials. While these are sensitive capabilities, they are the stated primary purpose of the skill and are constrained to the STS service namespace.
[CREDENTIALS_UNSAFE]: The skill defines parameters for handling sensitive authentication data, including SAML assertions, OIDC tokens, and MFA codes. These are processed as standard inputs for the AWS STS service and no insecure handling, hardcoded secrets, or exfiltration patterns were identified.

awsclaw-sts