skills/jeremylongshore/claude-code-plugins-plus-skills/building-gitops-workflows/Gen Agent Trust Hub
building-gitops-workflows
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references official documentation and resources from trusted and well-known domains, including argo-cd.readthedocs.io, fluxcd.io, and opengitops.dev.
- [PROMPT_INJECTION]: The skill includes instructions to read and process Kubernetes manifests from external Git repositories, which introduces a potential surface for indirect prompt injection.
- Ingestion points: Kubernetes manifest files stored in Git repositories (as described in SKILL.md).
- Boundary markers: The skill does not provide specific delimiters or instructions to ignore embedded commands within the manifests.
- Capability inventory: The skill requires administrative access to the Kubernetes cluster via kubectl and write access to Git repositories.
- Sanitization: There is no specific instruction for the agent to sanitize or validate the content of manifests retrieved from the repository before processing them.
Audit Metadata