cis-controls
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill includes instructions for using the AWS CLI (
aws ec2 describe-instancesandaws ec2 create-tags) to manage resource inventory and metadata, which are standard operations for asset management. - [EXTERNAL_DOWNLOADS]: Links provided in the documentation point to the developer's official GitHub repository (
github.com/Hack23/ISMS-PUBLIC) for accessing ISMS policies and architecture guidelines. - [COMMAND_EXECUTION]: Integrates well-known security analysis tools such as the OWASP Dependency-Check and SonarQube Maven plugins for vulnerability scanning in software supply chains.
- [CREDENTIALS_UNSAFE]: Uses environment variable placeholders (
ADMIN_USERNAME,ADMIN_PASSWORD) for sensitive configuration, following industry best practices for secret management and avoiding hardcoded credentials.
Audit Metadata