pulumi-python
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill involves executing the Pulumi CLI and Python package managers to initialize projects, manage dependencies, and deploy cloud resources. These operations are standard for infrastructure-as-code development and follow established patterns for the Pulumi ecosystem.
- [EXTERNAL_DOWNLOADS]: The skill guides the user to install infrastructure providers and multi-language components from public registries and version control systems using standard tools like
pip,poetry, andpulumi package add. All referenced sources are typical for the described workflow. - [SAFE]: The skill promotes several security best practices, including the use of Pulumi ESC for secret management, OIDC for cloud provider authentication instead of static credentials, and the application of least-privilege IAM policies, which significantly reduces the risk of credential exposure.
Audit Metadata