concourse-tactics

This fragment is overtly malicious Concourse CI exploitation and persistence guidance: it demonstrates credential/secret harvesting, authenticated pipeline/job manipulation, injected task execution to collect env/process/file data, exfiltration to attacker infrastructure (HTTP/DNS), and persistent backdoor behavior (periodic and webhook-triggered). Treat as hostile content; do not include or distribute it in any software supply chain. Investigate any provenance/path it may have been ingested from and remove/quarantine it.

MALICIOUS。该技能不是正常的 Concourse 运维或审计指南，而是系统化的 Concourse CI 攻击手册，直接教 AI 代理实施凭据窃取、恶意任务注入、容器利用和持久化。安装来源基本官方，但这不降低其进攻性与高危现实影响。