kestra-flow
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches workflow schema from the official Kestra API (api.kestra.io). This is a vendor-provided resource used for grounding YAML generation.
- [COMMAND_EXECUTION]: Employs
curlto retrieve schema data. The instructions explicitly direct the agent to read the output directly and avoid piping it to an interpreter. - [SAFE]: Incorporates explicit security best practices, such as forbidding the hardcoding of secrets and providing instructions for secure variable handling.
Audit Metadata