senior-devops
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through its automation tools. Ingestion points: The scripts
pipeline_generator.py,terraform_scaffolder.py, anddeployment_manager.pyaccept user-controlled paths (<project-path>,<target-path>) as input to analyze and generate configuration files. Boundary markers: No explicit delimiters or instructions to ignore embedded instructions within processed project files are defined. Capability inventory: The skill environment facilitates execution of Python, Helm, Terraform, and Kubernetes commands. Sanitization: There is no evidence of input validation or content sanitization for the files being analyzed. - [EXTERNAL_DOWNLOADS]: The
install_commanddefined inmetadata.jsonfetches the skill's documentation from an external, non-whitelisted GitHub repository (borghei/Claude-Skills). - [COMMAND_EXECUTION]: The skill's documentation explicitly instructs the agent to execute three local Python scripts (
pipeline_generator.py,terraform_scaffolder.py, anddeployment_manager.py) to perform automation tasks. - [NO_CODE]: Although the skill metadata specifies
has_scripts: trueand describes the functionality of several automation scripts, no executable code files (.py, .sh, etc.) are included in the provided skill package, rendering the core automation features non-functional as distributed.
Audit Metadata