secrets-manager
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The content is purely educational, providing standard implementation patterns for AWS Secrets Manager using official tools and libraries.
- [COMMAND_EXECUTION] (SAFE): All provided CLI commands (e.g., aws secretsmanager create-secret) are standard AWS CLI operations for managing cloud resources and do not include malicious payloads.
- [CREDENTIALS_UNSAFE] (SAFE): Hardcoded strings like 'MySecurePassword123!' are identified as documentation placeholders for training purposes and do not represent leaked production credentials.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill facilitates data ingestion from AWS Secrets Manager. While this creates a potential surface for indirect prompt injection if a secret contains malicious instructions, the skill does not include any exploitable capabilities like dynamic code execution or unsanitized output that would escalate this risk.
Audit Metadata