The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill provides an installation command that downloads a shell script from https://grid.kenshoo.com/cli/latest/install.sh and pipes it to sh. Kenshoo is the former name of Skai, and kenshoo.com is a well-known domain associated with this service. This is a standard installation pattern for vendor-provided CLI tools.
[COMMAND_EXECUTION]: The skill heavily utilizes the skai CLI binary to perform its primary functions. All commands observed (e.g., skai reports, skai forecast, skai describe) are within the scope of the skill's stated purpose of querying marketing data.
[CREDENTIALS_UNSAFE]: The skill provides instructions for configuring authentication using export SKAI_TOKEN="your-personal-access-token". This follows standard security practices by encouraging the use of environment variables for secret management rather than hardcoding them. The use of placeholders like your-personal-access-token is benign.
[DATA_EXFILTRATION]: While the skill interacts with a marketing platform API, there is no evidence of unauthorized data exfiltration. The network operations are directed at the vendor's own infrastructure for the purpose of retrieving requested marketing reports and forecasts.
[PROMPT_INJECTION]: The instructions are focused on operational guidance for using the CLI and do not contain patterns intended to bypass AI safety filters or override agent behavior.

skai-cli