argocd-image-updater
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references official Argo Project GitHub repositories (argoproj-labs and argoproj.github.io) for installation manifests and Helm charts, which are well-known and trusted sources in the cloud-native ecosystem.
- [COMMAND_EXECUTION]: Includes standard administrative commands for kubectl and helm to deploy and manage cluster resources, following industry-standard practices.
- [CREDENTIALS_UNSAFE]: Provides templates for Kubernetes Secrets; however, all sensitive fields use non-functional placeholders (e.g., <base64(...)>), and the documentation includes prominent security warnings advising against committing actual secrets to version control.
- [REMOTE_CODE_EXECUTION]: Recommends the standard installation method of applying remote manifests via kubectl apply from official project repositories. This behavior is documented as the legitimate deployment path for the software.
Audit Metadata