The Agent Skills Directory

[COMMAND_EXECUTION]: The skill instructions mandate the execution of 'yee88' CLI commands on the host system to perform tasks like configuration, project initialization, and job scheduling. This includes a troubleshooting step that suggests running arbitrary Python code to verify cron expressions.- [DATA_EXFILTRATION]: The 'send-file' command allows the agent to transmit files from the local filesystem to an external Telegram chat. Since the skill does not define restrictions on accessible directories, this capability could be exploited to exfiltrate sensitive files, such as SSH keys or configuration files containing credentials.

yee88