cloud-security-audit
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): The skill contains instructions to list sensitive cloud resources such as IAM users, policies, and S3 bucket ACLs. This is consistent with the primary purpose of a security audit and no exfiltration to external domains is attempted.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): While the skill mentions third-party auditing tools like Scout Suite, Prowler, and Pacu, it does not provide commands to automatically download or execute scripts from the internet via untrusted channels.
- [Command Execution] (SAFE): The skill includes numerous bash commands for cloud CLI tools (aws, az, gcloud). These are standard auditing commands used to verify environment configurations and are appropriate for the intended use-case.
Audit Metadata