The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill references sibling skills and documentation hosted on cnb.cool and cloudbase.net. These are official domains associated with Tencent's developer ecosystem and the skill author (tencentcloudbase).
[COMMAND_EXECUTION]: The documentation instructs the agent to use chmod +x scf_bootstrap during the setup of HTTP Functions. This is a standard operating procedure for the CloudBase runtime environment to ensure the bootstrap entry script is executable.
[DATA_EXPOSURE]: The skill describes how to update function configuration, including environment variables. It provides a defensive pattern for merging new variables with existing ones via getFunctionDetail to prevent accidental overwriting of production secrets.
[INDIRECT_PROMPT_INJECTION]: This finding identifies the attack surface for processing untrusted external data within developed functions.
Ingestion points: HTTP request bodies and headers processed in Node.js server templates (references/http-functions.md).
Boundary markers: None; the provided code templates use standard Node.js http module implementations.
Capability inventory: The skill includes high-privilege operations such as manageFunctions, manageGateway, managePermissions, and callCloudApi (via references/operations-and-config.md).
Sanitization: Examples demonstrate basic JSON.parse usage but do not include specific logic for sanitizing or filtering instructions from incoming HTTP data.

cloud-functions