sync-env
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides numerous commands for environment management, involving CLI tools such as
kubectl,argocd,make, andpython3. These are used to diff and apply Kubernetes manifests within a GitOps workflow. The skill documentation specifically warns against the automated execution of production sync commands. - [SAFE]: The Python scripts (
compare_configs.py,sync_images.py) use standard libraries (pathlib,difflib,re) for local file operations and do not perform any network requests or remote code execution. The tool implements a security-first approach by explicitly flagging secrets and ingress configurations as unsafe for automatic synchronization via theis_safe_to_syncfunction, ensuring environment-specific sensitive data remains isolated and protected.
Audit Metadata