The Agent Skills Directory

[COMMAND_EXECUTION]: The skill provides a comprehensive set of pre-defined shell commands for major cloud CLI tools (AWS, GCP, Azure) to automate the retrieval of system configuration and security settings for evidence collection purposes.
[DATA_EXFILTRATION]: The skill automates the extraction of sensitive infrastructure metadata, including IAM policies, firewall rules, and access control lists, into local files for auditing. This data exposure is a documented and necessary component of the skill's intended auditing functionality.
[EXTERNAL_DOWNLOADS]: The skill recommends and provides integration patterns for well-known industry security tools such as Semgrep, Checkov, and Terrascan to perform static analysis and infrastructure-as-code scanning.
[SAFE]: The skill follows security best practices by providing specific instructions to sanitize sensitive values from Terraform state files using jq filtering before storage as evidence.

compliance-audit