serverless
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- COMMAND_EXECUTION (SAFE): The
scripts/lambda_deploy.shfile uses the AWS CLI (aws lambda update-function-code) to deploy code. This is the intended purpose of the script and is a standard administrative action for serverless development. - DATA_EXPOSURE (SAFE): The deployment script
lambda_deploy.shpackages the current directory into a ZIP file. While this can accidentally include sensitive files if they are not properly excluded (e.g.,.env), the script includes a basic exclusion for.gitfiles, which is a standard baseline for such scripts. - DYNAMIC_EXECUTION (SAFE): The
assets/serverless-patterns.yamlfile contains code templates for Python and JavaScript. These are intended for the agent to use when generating new functions and do not involve runtime execution of untrusted strings within the skill's own logic. - BEST_PRACTICE (SAFE): The provided AWS Lambda pattern in
assets/serverless-patterns.yamlincludesAccess-Control-Allow-Origin: '*'. While this is a permissive CORS policy that may be inappropriate for production environments, it is a common template setting for demonstration or development purposes.
Audit Metadata