kubernetes-manifest-generator
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [PROMPT_INJECTION]: The skill provides a template for a shell script (generate-k8s-manifests.sh) that interpolates user-provided variables directly into bash commands. • Ingestion points: User-provided values for Application Name, Namespace, and Image (SKILL.md). • Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present. • Capability inventory: The skill utilizes Bash, Write, and Read tools. • Sanitization: No sanitization, escaping, or validation of user-provided strings is implemented before interpolation.
- [COMMAND_EXECUTION]: The skill uses the Bash tool for creating directory structures, writing files, and executing kubectl commands for resource generation.
- [DATA_EXFILTRATION]: Provides instructions to read local sensitive files (e.g., .env) for the purpose of generating Kubernetes Secret manifests, which is a core feature but involves accessing potentially sensitive data.
Audit Metadata