terraform-iac-expert
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate guidance and code examples for Infrastructure as Code (IaC) using Terraform and OpenTofu, with no malicious patterns detected.
- [EXTERNAL_DOWNLOADS]: Fetches automation tools and configurations from trusted organizations including GitHub (actions/checkout, actions/upload-artifact, actions/download-artifact), AWS (aws-actions/configure-aws-credentials), and HashiCorp (hashicorp/setup-terraform).
- [COMMAND_EXECUTION]: Utilizes standard Terraform and OpenTofu CLI commands (init, plan, apply, import) for their intended infrastructure management purposes.
- [CREDENTIALS_UNSAFE]: Demonstrates secure handling of credentials by promoting the use of AWS Secrets Manager and marking sensitive outputs to prevent data exposure in logs or state files.
Audit Metadata