airunway-aks-setup
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Secure Secret Handling: The skill incorporates secure methods for capturing and storing HuggingFace tokens. It uses 'read -s' in Bash and 'Read-Host -AsSecureString' in PowerShell to prevent secret leakage in terminal displays or command history. Temporary files used during secret creation are managed with restricted permissions and immediate cleanup.
- Cluster Management Operations: The workflow uses standard Kubernetes CLI tools (kubectl) for cluster discovery and status reporting. This includes inventorying nodes and GPUs and verifying the health of the AI Runway controller.
- Deployment Automation: Installation tasks are executed through local 'make' targets, providing a visible and auditable way to manage the infrastructure components within the user's environment.
- Controlled Execution: The skill requires explicit user confirmation before any installation or deployment steps, maintaining human-in-the-loop control over cluster changes.
Audit Metadata