guidewire-prod-checklist
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected. The skill's behavior is entirely consistent with its stated purpose of providing a DevOps checklist and automation utilities.
- [CREDENTIALS_UNSAFE]: The skill references sensitive environment variables, such as
GW_CLIENT_SECRET,DATABASE_URL, andENCRYPTION_KEY, for configuration validation and authentication. These are handled via environment variable references rather than hardcoding, which is a standard and acceptable practice for deployment scripts. - [COMMAND_EXECUTION]: The skill includes Bash scripts for environment verification and application rollbacks. These scripts utilize standard system tools like
curl,jq, andkubectlto interact with cloud infrastructure and vendor APIs. - [DATA_EXFILTRATION]: Network operations are performed via
curlto obtain OAuth tokens and check service health. These operations target endpoints defined by environment variables (e.g.,GW_HUB_URL) and are part of the legitimate functionality for Guidewire Cloud integration.
Audit Metadata