vastai-multi-env-setup
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: No security issues detected. The skill uses standard environment-based configuration loading and integrates with established secret management services such as AWS Secrets Manager, GCP Secret Manager, and HashiCorp Vault.
- [COMMAND_EXECUTION]: The skill utilizes command-line tools for secret management through Bash(aws:), Bash(gcloud:), and Bash(vault:*). These are well-known services and their use is consistent with the skill's primary purpose of managing environment-specific secrets.
- [SAFE]: Dynamic configuration loading is implemented with strict input validation. The code ensures that only specific, predefined environment names ('development', 'staging', 'production') are used to construct file paths for configuration loading, effectively preventing path traversal or arbitrary file inclusion.
Audit Metadata