cnpg-database
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of instructional Markdown documentation for Kubernetes platform management.- [EXTERNAL_DOWNLOADS]: Fetches schema definitions from Datree's GitHub repository and references official images from GitHub Container Registry (ghcr.io). These are well-known technology services and are documented neutrally for configuration purposes.- [CREDENTIALS_UNSAFE]: Follows security best practices by using placeholders (e.g., ) and referencing Kubernetes Secret objects rather than hardcoding actual credentials. It details a secure credential replication flow to ensure superuser isolation.- [COMMAND_EXECUTION]: Includes standard kubectl CLI examples for cluster health monitoring and connectivity testing. These are context-appropriate for a technical database management guide.- [PROMPT_INJECTION]: The guide provides templates that interpolate user-provided values (e.g., app names). While this presents an indirect prompt injection surface, it is a standard documentation pattern for automation guides.
- Ingestion points: User requests for database provisioning (SKILL.md)
- Boundary markers: Absent in YAML templates
- Capability inventory: kubectl command execution for debugging (SKILL.md)
- Sanitization: Not explicitly defined in the markdown guidelines
Audit Metadata