The Agent Skills Directory

[COMMAND_EXECUTION]: The skill uses administrative shell commands and sudo to perform server maintenance tasks, including auditing system status, modifying SSH configurations, managing firewall rules, and installing/removing system packages via apt. It also provides a reference for configuring passwordless sudo access. This behavior is expected given the skill's purpose for server management.- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection in Phase 0 ('Context Discovery'). It is instructed to search for and read existing documentation files on the server (e.g., server.md, setup.md, .claude/CLAUDE.md) to guide its workflow. Malicious instructions embedded in these files by an attacker with local file access could potentially influence the agent's behavior during the audit and maintenance phases. * Ingestion points: Documentation files found in the server's working directory (SKILL.md). * Boundary markers: Absent; the skill does not use delimiters or instructions to ignore embedded commands in the processed data. * Capability inventory: Root-level command execution via sudo, file system modification, package management, and network configuration. * Sanitization: Absent; read content is used to validate system state against documented expectations.

server-checkup