The Agent Skills Directory

[SAFE]: The skill implements safety guidelines to prevent the accidental exposure of sensitive data by instructing the agent to ignore files containing 'sops' in the name during analysis operations.
[COMMAND_EXECUTION]: The skill manages the generation and modification of Ansible playbooks that use 'become: true' to perform administrative tasks on remote systems and local controllers. This high-privilege execution is appropriate and necessary for the skill's primary purpose of infrastructure management.
[DATA_EXFILTRATION]: Accesses infrastructure-related sensitive files, such as Kubernetes kubeconfig files and SSH configurations, to perform deployment and configuration tasks. This access is limited to the defined scope of the DevOps repository and is not used for unauthorized data movement.
[PROMPT_INJECTION]: The component analysis feature ingests file content from the local repository (specifically playbooks and inventories) to provide summaries. While this creates a surface for indirect prompt injection from repository content, the risk is mitigated by the skill's instructions to focus on structural patterns and ignore sensitive secret files. Ingestion Point: Repository file reading in Section 4 of SKILL.md. Boundary Markers: Absent. Capability Inventory: File modification and Ansible task generation. Sanitization: Selective file filtering based on names.

ansible-component