ai-native-dev
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill acts as a comprehensive planning framework for system design and deployment. It does not contain any executable code, scripts, or network-enabled operations that could pose a security risk.
- [PROMPT_INJECTION]: No instructions were found that attempt to override the AI agent's safety filters, disregard system instructions, or extract system prompts. The workflow is purely task-oriented.
- [CREDENTIALS_UNSAFE]: There are no hardcoded secrets or API keys. The skill explicitly guides the user to manage sensitive data (e.g., LLM_API_KEY, Database credentials) using secure Kubernetes Secrets and external secret managers, following industry best practices.
- [DATA_EXFILTRATION]: The skill does not access sensitive local files (~/.ssh, ~/.aws) or attempt to exfiltrate data to external domains.
- [COMMAND_EXECUTION]: The skill contains no shell commands, subprocess calls, or instructions for the agent to execute code on the host system.
Audit Metadata