resonance-devops
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes high-privilege tools including
run_command,write_file, andedit_file. These tools are necessary for the primary DevOps tasks defined in the skill, such as CI/CD pipeline management and infrastructure provisioning. No malicious use of these commands was found. - [DATA_EXPOSURE] (SAFE): The instructions explicitly warn against the exposure of secrets (e.g.,
.envfiles) and mandate the use of secret rotation and runtime injection, demonstrating a security-first posture. - [PRIVILEGE_ESCALATION] (SAFE): The skill includes defensive guidelines such as the 'Root Ban' in Docker containers, ensuring processes run with least privilege.
- [INDIRECT_PROMPT_INJECTION] (SAFE): The skill possesses a vulnerability surface as it processes external files and executes commands. However, the instructions focus on structured DevOps workflows and safety checks, which mitigates risk within its intended scope.
- Ingestion points: Project source code and configuration files via
read_fileandedit_file. - Boundary markers: None explicitly defined in the provided markdown templates.
- Capability inventory:
run_command,write_file,edit_file, andread_file. - Sanitization: Not explicitly mentioned, though the skill encourages automated verification pipelines.
Audit Metadata