The Agent Skills Directory

[SAFE]: The skill operates locally to identify potential security threats related to the axios npm package compromise. Its actions, including reading manifest files and checking system paths, are consistent with its stated purpose of security auditing.\n- [COMMAND_EXECUTION]: The skill uses subprocess.run to execute system commands like pgrep, lsof, and package manager utilities (npm, yarn, pnpm). These are used for legitimate diagnostic purposes: identifying malicious processes, detecting active network connections to known malicious IPs, and verifying installed package versions. The open command is also used to display the final security report locally in the browser.

security-axios