The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes official cloud-provider CLI tools (aws, az, gcloud) to enumerate function resources and retrieve their security configurations.\n- [EXTERNAL_DOWNLOADS]: The workflow facilitates the download of function source code from cloud-provider storage (e.g., via AWS pre-signed URLs) using curl for local security analysis.\n- [REMOTE_CODE_EXECUTION]: The skill workflow involves the installation and execution of well-known third-party security auditing tools, such as Bandit for Python, ESLint for Node.js, and Prowler or Checkov for cloud security posture management.\n- [DATA_EXFILTRATION]: The skill accesses sensitive metadata, including execution role policies and environment variables, for the primary purpose of identifying security risks like hardcoded credentials and excessive permissions.

performing-serverless-function-security-review