The Agent Skills Directory

[REMOTE_CODE_EXECUTION]: The skill includes and executes several native Node.js addons (.node files) for Windows, macOS, and Linux platforms located in the 'assets/native-addon/' and 'assets/runtime-frameworks/xbs-isolated-vm/' directories. These binaries are loaded via 'require()' in 'scripts/load_native_addon.js' and 'assets/runtime-frameworks/isolated-vm-runtime.js', granting them full system access outside of the standard Node.js sandbox.
[EXTERNAL_DOWNLOADS]: The script 'scripts/download_ruyi_tool.js' is configured to download binary tools ('RuyiTrace.zip') and Firefox runtimes from the 'LoseNine' GitHub repository. This repository is an untrusted third-party source not associated with any recognized technology vendor or trusted organization.
[COMMAND_EXECUTION]: Several scripts perform high-risk command execution. 'scripts/install_ruyipage_runtime.js' runs 'pip install' to modify the host's Python environment. 'scripts/check_tls_clients.js' uses 'node -e' to execute dynamic JavaScript code to check for the presence of specific network libraries. 'scripts/capture_ruyitrace_log.js' spawns external browser processes and native executables.
[DATA_EXFILTRATION]: The skill is explicitly designed to collect and manipulate sensitive authentication data, including session Cookies, Authorization headers, and browser fingerprints as detailed in 'references/cookie-generation-analysis.md' and 'references/fingerprint-value-replay.md'. The combination of handling such sensitive credentials while executing unverified native binaries and performing external downloads creates a significant risk for data exfiltration.

web-js-env-patcher