The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill queries the crt.sh JSON API to fetch public certificate transparency logs. This is a standard and well-documented practice for security monitoring and attack surface mapping.
[COMMAND_EXECUTION]: Includes a Python script (agent.py) that manages a local SQLite database, performs DNS resolutions, and generates JSON reports. The script's operations are transparent and aligned with its stated security purpose.
[DATA_EXFILTRATION]: The script supports sending alerts to external endpoints (webhooks and SMTP servers). These are configured by the user through command-line arguments and are used exclusively for legitimate notification purposes.
[INDIRECT_PROMPT_INJECTION]: The tool ingests data from external CT logs. While this data is technically untrusted, the script performs standard JSON parsing and uses the data for structured reporting, presenting a minimal risk surface for indirect injection into an agent's context.

auditing-tls-certificate-transparency-logs