Skills
skills/aws/agent-toolkit-for-aws/connecting-lambda-to-api-gateway/Gen Agent Trust Hub

connecting-lambda-to-api-gateway

Pass

Audited by Gen Agent Trust Hub on May 7, 2026

Risk Level: SAFE
Full Analysis
  • Infrastructure Management via AWS CLI: The skill instructs the agent to perform multiple resource management tasks using the AWS CLI, such as aws apigateway create-rest-api and aws lambda add-permission. These operations are central to the skill's functionality for configuring serverless infrastructure.
  • Security Configuration Guidance: Step 7 and Step 12 focus on production security hardening. The skill includes specific instructions to warn users about the risks of using no authorization ('NONE') and provides optional steps to enable API keys, rate limiting (throttling), and CloudWatch logging to ensure monitoring and protection.
  • Input Parameter Handling: The procedure utilizes user-provided parameters (such as api_name and lambda_function_name) which are interpolated into AWS CLI commands. While this is standard for configuration tasks, the skill relies on the underlying platform's handling of these parameters to ensure they are used within the intended resource management context.
  • Least Privilege Awareness: The skill manages resource-based permissions using aws lambda add-permission, specifically setting the principal to apigateway.amazonaws.com and restricting the source ARN. This helps maintain a secure posture by only granting the API Gateway the specific permissions required to invoke the function.
Audit Metadata
Risk Level
SAFE
Analyzed
May 7, 2026, 02:36 AM