moai-security-secrets
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the HashiCorp Vault binary from its official releases domain.
- [EXTERNAL_DOWNLOADS]: Downloads the Sealed Secrets controller configuration from Bitnami Labs' official GitHub repository.
- [COMMAND_EXECUTION]: Utilizes standard system utilities like
unzip,vault, andkubectlto manage infrastructure and service deployment. - [SAFE]: Implements schema-based validation and programmatic redaction for environment variables using the
zodlibrary to prevent data leakage in logs.
Audit Metadata