aws-lambda
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides comprehensive guidance following official AWS security and architectural best practices. It explicitly advises against hardcoding credentials and recommends using AWS Secrets Manager or SSM Parameter Store.
- [EXTERNAL_DOWNLOADS]: The skill references the
aws-lambda-power-tuningtool hosted on a personal GitHub repository (alexcasalboni/aws-lambda-power-tuning). While this is a widely recognized community tool frequently recommended by AWS experts, it originates from outside the explicit trusted organizations list. However, it is used as a template for standardsam initoperations. - [COMMAND_EXECUTION]: The skill facilitates the use of AWS CLI, SAM CLI, and Docker/Finch for infrastructure management and local testing. These commands are necessary for the primary purpose of the skill and are executed within the user's configured environment.
- [DATA_EXPOSURE]: No hardcoded credentials or sensitive data exfiltration patterns were found. The skill correctly identifies the need for
--allow-sensitive-data-accessfor viewing logs, maintaining a posture of least privilege by default.
Audit Metadata