gitops-principles-skill
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): Analysis of the YAML manifests (Application, ApplicationSet, and Kustomization) reveals they are legitimate templates for GitOps workflows.
- [CREDENTIALS_UNSAFE] (SAFE): No hardcoded secrets or API keys were detected. The templates correctly use Kubernetes Secret references (e.g.,
secretName: github-token) for sensitive data. - [COMMAND_EXECUTION] (SAFE): No suspicious shell commands, sub-processes, or privilege escalation attempts were found.
- [SAFE] (SAFE): The
deployment.yamltemplate withinkustomization.yamlexplicitly implements security hardening by settingrunAsNonRoot: true,allowPrivilegeEscalation: false, andreadOnlyRootFilesystem: true. - [EXTERNAL_DOWNLOADS] (SAFE): Remote repository URLs point to standard Git and Helm registries (e.g., GitHub, Bitnami) which are consistent with the skill's stated purpose of managing ArgoCD applications.
Audit Metadata