moai-domain-devops
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides high-quality infrastructure-as-code and container configuration templates that strictly adhere to security best practices.
- [SAFE]: Container configurations for Docker and Kubernetes correctly implement the 'runAsNonRoot' directive and define resource requests/limits to prevent privilege escalation and denial-of-service via resource exhaustion.
- [SAFE]: Deployment scripts (Bash) and CI/CD workflows (GitHub Actions) use standard industry tools securely, employing secrets for authentication and avoiding hardcoded credentials.
- [SAFE]: Secret management examples utilize the External Secrets Operator pattern, ensuring sensitive credentials are never stored in plain text within the manifests.
- [SAFE]: No obfuscation, prompt injection, or suspicious remote code execution patterns were identified in the provided files.
Audit Metadata