boto3-eks
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No malicious patterns or security vulnerabilities detected. The skill uses standard AWS libraries (boto3, botocore) and the official Kubernetes Python client to perform legitimate administrative tasks.- [Data Exposure & Exfiltration] (LOW): The skill generates sensitive authentication tokens and kubeconfig files. However, it explicitly instructs users to avoid hardcoding credentials and uses standard local paths (~/.kube/config) for configuration storage, which is the expected behavior for this use case.- [Indirect Prompt Injection] (LOW): The skill contains an attack surface for indirect prompt injection via variables like 'cluster_name' or 'output_path' in the kubeconfig generation function.
- Ingestion points: Function parameters (cluster_name, output_path) in SKILL.md.
- Boundary markers: Not present in the provided snippets.
- Capability inventory: Filesystem write (Path.open) and AWS API interaction.
- Sanitization: Not explicitly implemented in the example snippets, but the code follows standard administrative patterns.
Audit Metadata