The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill provides instructions to download and install official cloud management tools from well-known technology providers.
Evidence: Instructions for fetching the Google Cloud CLI from sdk.cloud.google.com and dl.google.com are present in SKILL.md and references/gcloud-platform.md. These are official distribution points for Google Cloud tools.
[REMOTE_CODE_EXECUTION]: The skill references standard installation procedures that involve piping remote scripts to a shell for tool setup.
Evidence: The command curl https://sdk.cloud.google.com | bash is documented as the method to install the Google Cloud SDK. Since the source is a verified domain belonging to a trusted vendor (Google), this is considered a safe and intended operation for a DevOps skill.
[COMMAND_EXECUTION]: Python utility scripts execute local CLI tools to perform infrastructure tasks.
Evidence: scripts/cloudflare_deploy.py uses subprocess.run to call the wrangler CLI for Worker deployments. The script uses safe argument parsing and restricts environment choices, preventing arbitrary command injection.
[SAFE]: The skill content promotes and implements security best practices for cloud deployments.
Evidence: Documentation and scripts (e.g., scripts/docker_optimize.py) explicitly check for and advise on running containers as non-root users, using multi-stage builds to reduce attack surface, and managing secrets using environment variables or dedicated secret management tools rather than hardcoding them.

devops