The Agent Skills Directory

[SAFE]: The skill performs network operations using the requests library to interact with well-known security services such as SecurityTrails, crt.sh, URLhaus, and ThreatFox. These are legitimate resources for threat intelligence gathering.\n- [SAFE]: The skill implements reporting functionality by writing data to local JSON and Markdown files. These file system operations are localized and restricted to the skill's stated purpose of tracking infrastructure.\n- [SAFE]: The skill involves the ingestion of untrusted data from external APIs (ingestion points in scripts/agent.py and SKILL.md) to identify infrastructure relationships. While explicit boundary markers are absent and sanitization is limited to basic string cleaning, the capability inventory is restricted to data processing and reporting, aligning with the primary goal of adversary tracking.

building-adversary-infrastructure-tracking-system