The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes standard command-line tools such as curl, git, and python3. The use of python3 -c is restricted to a simple, non-malicious script for URL-encoding authentication tokens to ensure they are handled correctly by the git client.
[DATA_EXFILTRATION]: The skill accesses the BITBUCKET_DATA_CENTER_TOKEN environment variable. This token is used appropriately for its intended purpose: authenticating against the Bitbucket REST API and configuring git remote URLs for repository access.
[PROMPT_INJECTION]: The skill is designed to ingest data from external sources, specifically Bitbucket repository content and API responses. While this presents an inherent risk of indirect prompt injection, it is a standard characteristic of any tool integrated with version control systems and is not a sign of malicious intent.

bitbucket-data-center