terraform-gcp-integration
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the official 'hashicorp/google' provider. Per the [TRUST-SCOPE-RULE], downloads and references from well-known technology companies like HashiCorp are considered safe and do not escalate the security verdict.
- [SAFE]: Authentication instructions recommend standard, secure methods such as Application Default Credentials (ADC) and the official 'gcloud' CLI tool.
- [SAFE]: The skill explicitly incorporates security best practices, including the Principle of Least Privilege for IAM role assignments and the use of the 'sensitive' attribute when handling service account keys in Terraform outputs.
- [SAFE]: All provided HCL (HashiCorp Configuration Language) and Shell snippets are transparent, follow industry-standard patterns for GCP resource provisioning (Pub/Sub, GKE, Cloud SQL, Storage), and contain no obfuscated or malicious commands.
Audit Metadata