The Agent Skills Directory

[SAFE]: The skill implements a legitimate security analysis workflow for detecting path traversal and directory traversal vulnerabilities.
[SAFE]: All instructions and code patterns provided (including examples in Python, Node.js, PHP, etc.) are educational and intended to help the agent identify vulnerable coding practices versus secure ones.
[SAFE]: The multi-phase approach using subagents is a standard architecture for complex AI tasks and does not involve any unauthorized command execution or privilege escalation.
[SAFE]: File operations are restricted to reading the codebase for analysis and writing findings to a local 'sast/' directory, which is appropriate for its stated purpose.
[SAFE]: No external network requests, credential harvesting, or obfuscation techniques were identified within the skill instructions.

sast-pathtraversal