gitlab-ci-patterns
Warn
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
- [COMMAND_EXECUTION] (MEDIUM): The Kubernetes deployment template (.deploy_template) utilizes the --insecure-skip-tls-verify=true flag. This configuration explicitly disables TLS certificate verification when communicating with the Kubernetes API server, facilitating Man-in-the-Middle (MitM) attacks.
- [REMOTE_CODE_EXECUTION] (LOW): The Dynamic Child Pipelines example executes a Python script to generate executable YAML. This pattern introduces a risk where the CI/CD pipeline logic is determined at runtime, potentially allowing for the injection of malicious jobs if the generation script is compromised.
Audit Metadata