k8s-cluster-api
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill contains instructions to fetch binary releases of clusterctl and clusterawsadm from the official kubernetes-sigs GitHub organization. It also references manifests from trusted projects like cert-manager and projectcalico. These are well-known and standard sources for Kubernetes infrastructure tooling.
- [COMMAND_EXECUTION]: Go scripts located in the scripts/ directory use os/exec to wrap kubectl and clusterctl commands. This is intended behavior to provide automated auditing, health checks, and state export capabilities for Kubernetes clusters managed by Cluster API.
- [COMMAND_EXECUTION]: Documentation includes setup commands using sudo to move installed binaries to system paths like /usr/local/bin/. This is standard practice for CLI tool installation and aligns with the skill's primary purpose.
Audit Metadata