deploy
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [PROMPT_INJECTION]: The codebase analysis workflow presents a surface for indirect prompt injection, as the agent scans untrusted user files to determine deployment strategy. \n
- Ingestion points: Codebase analysis phase described in SKILL.md. \n
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands are specified in the prompts. \n
- Capability inventory: The skill facilitates infrastructure generation and AWS deployment execution. \n
- Sanitization: Risks are effectively mitigated by mandatory pre-deployment security scanning (cfn-nag, checkov), secret detection gates, and the requirement for explicit user confirmation before any deployment occurs. \n- [SAFE]: No malicious scripts, unauthorized network operations, or persistence mechanisms were detected. The skill is composed of instructional markdown that follows established AWS security recommendations.
Audit Metadata