Security Investigator — Copilot Security Investigation Kit

Practical Notes

• Setup time ~35 minutes (clone + venv + requirements + config templates)
• README highlights 25 specialized Agent Skills as building blocks for investigations
• GitHub stars + forks (verified): see Source & Thanks

For teams adopting this repo, treat it like a playbook:

• Start with one investigation workflow (e.g., secrets triage) and harden it.
• Lock down tokens/credentials and avoid storing them in repo files.
• Add an audit trail: record what prompts ran, what tools were called, and what evidence was collected.

Because investigation systems can touch sensitive data, run a dry “safe mode” first: use dummy credentials and verify the workflow never calls destructive actions by default.

FAQ

Q: Is this only for Copilot? A: The project is designed around Copilot/Agent Skills, but the workflows and prompts can inspire similar setups in other agent environments.

Q: How do I avoid leaking secrets? A: Keep tokens in env/secret stores, sanitize logs, and review generated artifacts before sharing.

Q: What is a safe first milestone? A: One end-to-end workflow that produces repeatable output with dummy credentials and no destructive calls.