Skills
skills/openshift/hypershift/Konflux Archived PipelineRuns/Gen Agent Trust Hub

Konflux Archived PipelineRuns

Pass

Audited by Gen Agent Trust Hub on Mar 27, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses oc and gh CLI tools to retrieve authentication tokens and fetch pipeline metadata from GitHub and OpenShift clusters.
  • [DATA_EXFILTRATION]: Accesses the OpenShift session token using oc whoami -t and transmits it to the KubeArchive API. This is the intended authentication mechanism for the service, which is hosted on a vendor-owned domain (openshiftapps.com).
  • [PROMPT_INJECTION]: The skill processes untrusted data from external sources, creating a surface for indirect prompt injection. 1. Ingestion points: Retrieves pod logs via curl and check-run summaries from the GitHub API. 2. Boundary markers: No explicit delimiters or warnings for the agent to ignore instructions embedded in logs or API output. 3. Capability inventory: Uses curl, gh, and oc for network and system interactions. 4. Sanitization: The skill does not implement filtering or sanitization of the retrieved content.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 27, 2026, 09:37 PM