The Agent Skills Directory

[COMMAND_EXECUTION]: The scripts/agent.py script executes platform-specific commands such as manage-bde, fdesetup, lsblk, netsh, and ufw to verify disk encryption and firewall configurations. These are standard operations for a device posture assessment tool.
[EXTERNAL_DOWNLOADS]: The skill communicates with well-known security service endpoints including api.crowdstrike.com and graph.microsoft.com to retrieve compliance data in scripts/process.py. These connections target official vendor APIs.
[PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface. Ingestion points: Compliance data fetched from EDR and MDM APIs in scripts/process.py. Boundary markers: Absent. Capability inventory: System command execution via subprocess in scripts/agent.py. Sanitization: The skill performs standard JSON parsing without specific sanitization of the remote data before displaying it.

implementing-device-posture-assessment-in-zero-trust