The Agent Skills Directory

[COMMAND_EXECUTION]: The script scripts/reverse_engineer.py makes extensive use of subprocess.run to orchestrate its workflow. It executes external tools such as git for cloning, as well as several internal shell and Python scripts. It passes user-provided strings like product_name and upstream_repo as arguments to these commands.
[REMOTE_CODE_EXECUTION]: In binary analysis mode, the skill executes the target binary provided by the user. Specifically, scripts/binary/capture_cli_help.sh invokes the binary with the --help flag and recursively explores subcommands. This operation represents the direct execution of untrusted code on the host system.
[EXTERNAL_DOWNLOADS]: The skill performs remote network operations to acquire data for analysis. It uses git clone to download source code from an upstream_repo and urllib.request in scripts/fetch_url.py to fetch XML sitemaps from a user-specified docs_sitemap_url.
[DATA_EXFILTRATION]: The skill is capable of reading sensitive files (such as environment configurations and source files) during its analysis phase and has access to the network to fetch remote resources. This combination of capabilities establishes a technical path for potential data exfiltration, even though the skill includes a secret-scanning utility.
[PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it ingests and processes untrusted data from external repositories, binaries, and sitemaps.
Ingestion points: scripts/reverse_engineer.py (via git clone) and scripts/fetch_url.py (via URL fetching).
Boundary markers: The SKILL.md defines a 'Constraints' section and 'Quality Rubric' that explicitly warn against reproducing proprietary source code or prompts in reports.
Capability inventory: Uses subprocess.run for analysis and urllib.request for network access, and writes reports to the .agents/research/ directory.
Sanitization: Employs scripts/security/scan_secrets.sh as a mandatory gate to detect and redact credentials from the final output.

reverse-engineer