The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill references several third-party security tools hosted on GitHub, such as arthaud/git-dumper, internetwache/GitTools, and anantshri/svn-extractor. These are provided as informational resources for researchers and are not automatically downloaded or executed by the skill.
[DATA_EXFILTRATION]: The instructions list sensitive file paths (e.g., /.env, /.git/config) as targets for security probing. The skill includes an explicit instruction to the AI agent to treat any recovered data as sensitive and to avoid unauthorized exfiltration, restricting use to authorized assessments only.

insecure-source-code-management