migrating-airflow-2-to-3
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill implements a PostToolUse hook that executes a benign shell command (
echo) to suggest linting steps to the user. It also provides instructions for using theruffcommand-line utility with the--fixflag to perform automated code migrations and refactoring. - [EXTERNAL_DOWNLOADS]: The documentation identifies and recommends the use of well-known Python packages, including
apache-airflow-client,astronomer-cosmos, andapache-airflow-providers-smtp, for facilitating the upgrade process and maintaining functionality in Airflow 3. - [DATA_EXPOSURE]: The skill provides example code for interacting with Airflow APIs that correctly prioritizes the use of environment variables for secret management (e.g.,
DEPLOYMENT_API_TOKEN), rather than hardcoding sensitive credentials.
Audit Metadata