api-gateway
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides high-quality guidance on secure API design and governance, emphasizing the principle of least privilege for IAM roles and resource policies.\n- [SAFE]: Infrastructure as Code (IaC) templates for SAM and CloudFormation follow industry standards and include explicit instructions for maintaining security boundaries.\n- [SAFE]: Documentation addresses common security pitfalls, such as VTL injection and authentication bypass, providing clear remediation steps and defensive configurations.\n- [SAFE]: External references and dependencies are limited to official vendor documentation and established, trusted repositories.\n- [SAFE]: No evidence of malicious behavior, such as prompt injection, unauthorized data access, or obfuscation, was detected.
Audit Metadata