vm-rebalance
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a well-documented administrative tool that performs intended functions (VM rebalancing) using authorized MCP tools.
- [COMMAND_EXECUTION]: The skill possesses the capability to modify cluster state, update VM configurations, and manage workloads; however, these are essential for VM orchestration and are mitigated by mandatory user approval checkpoints and validation logic.
- [PROMPT_INJECTION]: The skill processes cluster-level data such as VM metadata and node metrics. While this represents a surface for indirect prompt injection, the risk is mitigated by the skill's reliance on structured workflows and explicit human verification before executing migrations.
- [CREDENTIALS_UNSAFE]: The skill identifies the
KUBECONFIGenvironment variable as a prerequisite for the MCP server but includes proactive security instructions to ensure that the configuration path and its sensitive contents are never exposed in the agent's output.
Audit Metadata