soc2-compliance
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses AWS CLI commands to generate and retrieve compliance evidence. Specifically, it executes
aws iam generate-credential-report,aws iam get-credential-report, andaws cloudtrail lookup-eventsto collect data for SOC 2 audits. - [DATA_EXFILTRATION]: Accesses sensitive security posture information by retrieving IAM credential reports and CloudTrail audit logs. These operations are restricted to evidence collection within the AWS environment and are consistent with the skill's stated purpose, with no identified attempts to exfiltrate data to external domains.
Audit Metadata