The Agent Skills Directory

[SAFE]: No security issues detected. The skill uses standard environment variables (KSKILL_KTX_ID, KSKILL_KTX_PASSWORD) and a protected local configuration file (~/.config/k-skill/secrets.env with 0600 permissions) for credential management, which is a standard and safe practice for secret handling.
[EXTERNAL_DOWNLOADS]: The skill installs two legitimate Python packages, korail2 and pycryptodome, from official package registries. These are standard libraries for Korail API interaction and cryptographic operations respectively.
[COMMAND_EXECUTION]: The skill executes a local Python script scripts/ktx_booking.py to interface with the Korail service. This is expected behavior for its stated purpose of ticket booking.
[DATA_EXFILTRATION]: Network operations are limited to the intended functionality of communicating with the Korail booking system. No evidence of sensitive data being sent to unauthorized external domains was found.

ktx-booking