The Agent Skills Directory

[SAFE]: The skill performs legitimate protocol analysis for OT/ICS security auditing. The logic is focused on detecting critical PLC operations like CPU stops and program downloads. No malicious command execution, network exfiltration, or credential harvesting patterns were identified.
[PROMPT_INJECTION]: The skill processes untrusted data from PCAP files, which creates a potential surface for indirect prompt injection. An attacker could craft packet payloads that, when processed and displayed in the analysis report, might attempt to influence the agent's behavior.
Ingestion points: Ingestion occurs via the 'pcap_path' argument in 'SKILL.md' and 'scripts/agent.py' when loading external network capture files for analysis.
Boundary markers: None present; the script directly outputs packet data such as function names and IP addresses without explicit delimiters or instructions to the model to ignore embedded content.
Capability inventory: The skill's capabilities are restricted to reading local files (PCAPs) and writing report files (JSON/text writing in 'scripts/agent.py'). No network access or arbitrary command execution capabilities are available to be exploited via injection.
Sanitization: The scripts extract and display protocol fields verbatim from the capture file without sanitization or escaping of potential instruction-like strings.

performing-s7comm-protocol-security-analysis