dd-apm
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the official Datadog Agent installation script from the Datadog domain (install.datadoghq.com).
- [EXTERNAL_DOWNLOADS]: Downloads the pup CLI utility from the Datadog Labs organization on GitHub to verify APM status and manage authentication.
- [COMMAND_EXECUTION]: Executes system and infrastructure management commands via kubectl, helm, and ssh to deploy the Datadog Operator, manage Kubernetes secrets, and configure Linux service units.
- [PROMPT_INJECTION]: Ingests and interpolates user-provided parameters (e.g., service names, environment tags, and hostnames) into shell commands and configuration manifests.
- Ingestion points: User-supplied variables and discovery command outputs (e.g., CLUSTER_NAME, SERVICE_NAME) throughout SKILL.md and referenced files.
- Boundary markers: Relies on standard shell variable interpolation without specific 'ignore instructions' delimiters.
- Capability inventory: Uses kubectl, ssh, helm, curl, and bash to perform agent deployment and service configuration.
- Sanitization: Uses standard shell variable passing for parameters without explicit character validation or escaping filters.
Audit Metadata