moai-domain-devops

This skill is a legitimate DevOps reference containing production-grade manifests, CI, Terraform, and deployment scripts. I found no evidence of embedded malware, credential harvesting, obfuscated payloads, or malicious third-party endpoints. The primary security considerations are operational: the examples require high-privilege credentials (Kubernetes admin, AWS access, GitHub repo rights) and include actions (kubectl, ExternalSecrets, ArgoCD automated sync) that, if executed with overly-broad permissions or in a compromised environment, could be abused. There are also several formatting/placeholder errors that must be corrected before use. Overall risk is moderate because of the high privileges implied and the allowed_tools (Bash/WebFetch) which, when combined with credentials, enable impactful actions. Follow principle of least privilege, scope CI secrets, use RBAC/IAM controls for ExternalSecrets, and require manual approvals for sensitive ArgoCD or image-promotion steps.