The Agent Skills Directory

[SAFE]: No malicious patterns or security vulnerabilities were detected. The skill's behavior aligns with its stated purpose of managing cloud infrastructure.
[CREDENTIALS_SAFE]: The skill manages cloud API keys and Elasticsearch credentials using environment variables. It includes a robust mechanism to redact sensitive fields (e.g., keys, tokens) from standard output and writes them to a temporary file with restricted permissions (0600), which is a security best practice.
[COMMAND_EXECUTION]: The skill executes a local Python script to perform API operations. These operations are restricted to the management of users, roles, and API keys within the user's authenticated Elastic Cloud environment.
[EXTERNAL_DOWNLOADS]: The skill communicates exclusively with official Elastic domains (api.elastic-cloud.com) and user-provided Elasticsearch endpoints to perform its intended functions. No unauthorized or suspicious remote code downloads were identified.
[PROMPT_INJECTION]: The instructions provided to the agent focus on task accuracy and security hygiene, such as confirming deletions and avoiding the direct display of secrets. The static detector warning for prompt injection is a false positive triggered by these protective constraints.

cloud-access-management