aws-serverless
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFE
Full Analysis
- [Secure Resource Management]: The skill provides extensive documentation on managing AWS resources using the AWS CLI and Infrastructure as Code (SAM/CDK). These patterns are standard for administrative tasks and are accompanied by guidance on maintaining least-privilege access.
- [Credential Safety]: The documentation explicitly warns against storing secrets in environment variables and provides instructions for using AWS Secrets Manager and SSM Parameter Store with secure caching via official utilities.
- [Data Processing Patterns]: Analysis of the event-driven architecture patterns shows a focus on robust data handling. The skill recommends using JSON Schema and libraries like Pydantic or Zod for input validation at the handler boundary to mitigate risks associated with processing untrusted external data.
- [Trusted Dependencies]: All suggested libraries, such as Powertools for AWS Lambda and the AWS SDKs, are official, well-maintained packages from a trusted vendor. No unpinned or suspicious third-party dependencies were identified.
- [Administrative Capabilities]: While the skill enables an agent to perform complex AWS operations, it does so through standard interfaces (CLI/SDK) and includes explicit 'production readiness' checklists to ensure operational safety.
Audit Metadata