Skills
skills/kudosx/claude-skill-cloud-aws/cloud-aws/Gen Agent Trust Hub

cloud-aws

Pass

Audited by Gen Agent Trust Hub on Mar 13, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The scripts/cost.py utility uses the Python subprocess module to execute AWS CLI commands for data retrieval. These commands (e.g., aws s3api, aws cloudwatch) are used to gather infrastructure metadata for cost estimation. The implementation uses list-based arguments with subprocess.run, which prevents shell injection by avoiding the use of a system shell for command execution.
  • [SAFE]: The instructions in SKILL.md promote security best practices, such as using IAM roles with least privilege, avoiding hardcoded credentials, and using AWS Secrets Manager for sensitive data management.
  • [SAFE]: Analysis of the Python scripts and project configuration found no evidence of obfuscation, remote code downloads, unauthorized data exfiltration, or persistence mechanisms.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 13, 2026, 04:46 PM