gcloud
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [Prompt Injection] (SAFE): No patterns of instruction override, safety bypass, or role-play injection were detected.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials or access to sensitive file paths (~/.ssh, etc.) found. The skill correctly recommends using Application Default Credentials (ADC) instead of static Service Account Keys.
- [Obfuscation] (SAFE): No Base64, zero-width characters, or encoded content identified.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill references 'gcloud components install kubectl', which is a standard feature of the trusted Google Cloud SDK. No untrusted third-party package managers or remote script execution (curl|bash) are present.
- [Privilege Escalation] (SAFE): No use of sudo or modification of system-level permissions.
- [Indirect Prompt Injection] (SAFE): This is a reference skill with no data ingestion surface for processing external, untrusted content.
- [Dynamic Execution] (SAFE): No runtime compilation or dynamic code generation techniques are used.
Audit Metadata