Skills
skills/mukul975/anthropic-cybersecurity-skills/analyzing-cloud-storage-access-patterns/Gen Agent Trust Hub

analyzing-cloud-storage-access-patterns

Pass

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The script scripts/agent.py executes the aws CLI to fetch log data.
  • Evidence: The subprocess.run() call uses a static argument list ['aws', 'cloudtrail', 'lookup-events', ...] ensuring arguments are not interpreted by a shell.
  • [EXTERNAL_DOWNLOADS]: The instructions recommend installing standard software dependencies.
  • Evidence: SKILL.md specifies pip install boto3 requests.
  • Security Note: These are standard libraries from trusted sources for cloud and web operations.
  • [SAFE]: The skill incorporates a surface for processing external log data.
  • Ingestion points: scripts/agent.py ingests JSON data from CloudTrail via the AWS CLI.
  • Boundary markers: Not applicable as data is processed for statistical anomalies rather than being interpreted by a language model.
  • Capability inventory: The skill can run the aws CLI and write to local JSON files.
  • Sanitization: The script uses structural JSON parsing and does not interpolate log content into shell commands or executable code.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 7, 2026, 11:58 AM