cloud-management

The cloud-management skill presents a coherent and proportionate footprint for its stated purpose: multi-cloud, CLI-first management with explicit approvals and a guarded execution loop. It relies on official CLIs and repository-owned automation, with read-only start, guarded mutations, and audit-friendly outputs. While credential handling is not explicitly shown in the provided excerpt, the architecture stresses secure identity methods (SSO, managed identity, OIDC) and explicit approvals, which mitigates typical credential-exposure risks. No evident supply-chain or data-exfiltration patterns are present in the artifact. Overall, the skill is BENIGN with MEDIUM risk due to potential credential usage and command construction concerns that should be validated in concrete implementations.