The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill references and downloads Kubernetes manifests directly from the official Project Calico GitHub repository (raw.githubusercontent.com/projectcalico/calico). These are well-known, trusted sources for container networking configuration.
[COMMAND_EXECUTION]: Scripts in the scripts/ directory use Python's subprocess.run() to execute kubectl and calicoctl commands. The implementation follows best practices by using list-based arguments instead of shell strings, which effectively prevents shell injection vulnerabilities.
[SAFE]: The skill operates as described, performing security audits of local policy files and managing cluster network state. No patterns of data exfiltration, obfuscation, or malicious intent were detected. The scripts handle data locally and use expected DevOps tooling for the claimed purpose.

implementing-kubernetes-network-policy-with-calico