kubernetes-deployment
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): The skill provides infrastructure-as-code templates that promote security hardening, including 'runAsNonRoot: true', 'allowPrivilegeEscalation: false', and 'readOnlyRootFilesystem: true'.
- [COMMAND_EXECUTION] (LOW): The skill includes a bash script that executes 'kubectl' commands. This is the intended functionality of a deployment skill. The script follows shell safety best practices by using 'set -euo pipefail' and proper variable quoting to mitigate simple injection risks.
- [DATA_EXPOSURE] (SAFE): While the deployment references Kubernetes Secrets, it does so using standard 'secretKeyRef' patterns, which is the recommended way to handle sensitive data in Kubernetes without hardcoding values.
Audit Metadata