The Agent Skills Directory

[SAFE]: The skill is a legitimate technical resource for identifying security misconfigurations and unpatched vulnerabilities in VMware products. It incorporates references to public CVE databases and vendor security advisories to provide a well-documented auditing workflow.
[COMMAND_EXECUTION]: The skill utilizes common command-line utilities such as curl, openssl, ldapsearch, and xmllint to interact with target systems. These commands are executed to perform network-level reconnaissance and do not exhibit patterns of unauthorized file system access or privilege escalation.
[EXTERNAL_DOWNLOADS]: The skill performs targeted network requests to external servers to retrieve version strings, metadata, and service responses. These operations are restricted to the user-provided target and do not involve downloading or executing untrusted code within the agent's environment.
[PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection because it ingests data from external network responses (documented in SKILL.md) and incorporates it into the agent's context. While the skill lacks explicit boundary markers or input sanitization for these responses, its primary function is diagnostic and its operations do not grant the target server direct control over the agent's execution logic.

vmware-vcenter-attack