iac-terraform
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill incorporates configuration for downloading utility tools such as Terragrunt and Infracost from their official GitHub repositories. These downloads target well-known services and represent standard integration patterns for infrastructure automation.
- [COMMAND_EXECUTION]: Local Python scripts (init_module.py and validate_module.py) are provided to scaffold and audit Terraform modules. These scripts utilize standard library functions for file system interactions and include validation logic to ensure that user-supplied module names do not lead to command injection.
- [DATA_EXFILTRATION]: Technical guidance and workflow templates prioritize the protection of sensitive information. The skill explicitly warns against hardcoding credentials and provides examples for using OIDC and managed secret stores like AWS Secrets Manager to handle authentication securely.
Audit Metadata