Skills
skills/aws-samples/sample-amazon-bedrock-agentcore-onboarding/clean-workshop/Gen Agent Trust Hub

clean-workshop

Pass

Audited by Gen Agent Trust Hub on Apr 1, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute local cleanup scripts (clean_resources.py) across various workshop-specific subdirectories. This is the primary intended functionality of the skill.
  • [DATA_EXPOSURE]: The skill identifies and reads local configuration files such as .bedrock_agentcore.yaml, inbound_authorizer.json, and policy_config.json to verify if resources were successfully created before attempting to delete them.
  • [PROMPT_INJECTION]: The skill accepts user-provided input through $ARGUMENTS to filter which steps to clean. The instructions specify that the agent should parse these arguments to determine the steps, which is a standard pattern for argument processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 1, 2026, 01:38 AM