Infrastructure as Code Skill
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as an instructional guide for cloud infrastructure management and does not contain any executable malicious payloads or commands.
- [SAFE]: The documentation explicitly promotes security best practices, such as secrets management via Key Vaults and the use of static analysis tools like tfsec and checkov.
- [SAFE]: GitHub Actions workflow examples reference official and well-known repositories from GitHub and HashiCorp for CI/CD setup.
- [SAFE]: Code snippets provided (HCL, Bicep, TypeScript, YAML) are standard boilerplate templates for infrastructure provisioning and do not contain obfuscation or data exfiltration logic.
Audit Metadata