The Agent Skills Directory

[Command Execution]: The skill utilizes the subprocess module in extract_failed_tests.py to interact with the Azure CLI. This is used specifically to obtain authentication tokens for the Azure DevOps API, which is a standard and secure practice in professional development environments. The commands are executed with structured argument lists, preventing common shell-related vulnerabilities.- [External Data Retrieval]: The skill performs necessary network operations to fetch test results and logs from trusted domains, including dev.azure.com, helix.dot.net, and api.github.com. These operations are essential for the skill's purpose and are conducted using standard libraries like requests and urllib.- [Data Ingestion Surface]: The skill processes CI console logs to enrich failure data. While this involves handling external content, the risk is addressed through the following mechanisms: (1) Ingestion points: Logs are stored locally in the helix-logs/ directory. (2) Boundary markers: Explicit instructions guide the agent to perform verbatim extraction within defined report sections. (3) Capability inventory: All script-based operations (API calls, DB writes) are confined to the committed files in the scripts/ directory. (4) Sanitization: The included validate_results.py script performs 24 integrity checks, including a verification that extracted error messages match the source logs verbatim.

ci-pipeline-monitor