aws-cdk-development
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOW
Full Analysis
- [Unverifiable Dependencies & Remote Code Execution] (LOW): Mentions cdk-nag, which is a trusted open-source security tool provided by cdklabs (AWS-affiliated) for synthesis-time auditing.
- [Indirect Prompt Injection] (LOW): The skill uses MCP tools to read external AWS documentation. While this is an ingestion of external data, it is a standard workflow for a development assistant and relies on trusted AWS documentation sources.
- [Dynamic Execution] (LOW): Guidance includes creating AWS Lambda functions using CDK constructs, which is the primary intended use case and does not involve unsafe runtime execution patterns within the agent's own context.
- [SAFE] (SAFE): The skill provides high-quality architectural advice, specifically recommending against explicit resource naming to prevent collisions and advocating for account-level isolation for security boundaries.
Audit Metadata